VSCode Vulnerabilities – Thomas Chauchefoin, Paul Gerste – PSW #804

Full episode and show notes

Guests

Staff Vulnerability Researcher at Sonar

Thomas Chauchefoin is a Staff Vulnerability Researcher in the Sonar R&D team. With a strong background in offensive security, he helps uncover and responsibly disclose 0-days in major open-source software. He also participated in competitions like Pwn2Own or Hack-a-Sat and was nominated for three Pwnies Awards for his research on PHP supply chain security.

Staff Vulnerability Researcher at Sonar

Paul Gerste is a Staff Vulnerability Researcher in the Sonar R&D team. In the last months, he has been hunting bugs in popular JavaScript and TypeScript applications, yielding critical vulnerabilities in projects such as Proton Mail, Rocket.Chat, and Blitz.js. Paul has also been a CTF player and organizer for some years and loves to hack all web-related things.

Hosts

Principal Security Evangelist at Eclypsium