One-Click Attack on VS Code Steals GitHub OAuth Token3. June 2026CybersecurityA one-click attack on VS Code enables attackers to steal complete GitHub OAuth tokens with read and write access to private repositories. Share on: