Sometimes the job interview just wants to gain code exec on your machine:
https://runjak.codes/posts/2026-01-21-adversarial-coding-test/
Local girl failed the coding interview:
I don't think they've got a job for me anymore now that I got their repos deleted⁉️
Thanks to @cxiao for highlighting these:
https://www.jamf.com/blog/threat-actors-expand-abuse-of-visual-studio-code/
https://opensourcemalware.com/blog/contagious-interview-vscode
.. I do know that the version of tokenlinux.sh I retrieved also downloads node and executes something with it.
@mushu that is crazy... thanks for posting about it.
Is it just me, or could the dialog be a little more specific about WHAT it automatically executes? And: why do I want my IDE to automatically execute stuff in a repo I open? What is the positive use case of such a feature? (I am an IntelliJ user, so that is a genuine question)
@joshix @mushu interesting, I have never felt the need for this: https://www.jetbrains.com/help/idea/settings-tools-startup-tasks.html
Maybe something for other ecosystems...
@temptoetiam hey :)
yes - I was lucky to detect foul play and happened to be careful.
I found that software would've run that loaded and executed other software. From what I could see the setup in the end was one where my machine would've executed whatever the attackers wanted with user privileges.
I'm not 100% sure what the endgame would've been. Could've gone for ransomware, information stealing, botnets you name it.
@sol_hsa yeah - I also think it's bigger than a single editor. Jetbrains does it too: https://www.jetbrains.com/help/idea/project-security.html
Not even starting to think about editors that are more 'AI enabled' ^^
@mushu
Wow, reading these comments made me remember this job I had briefly (over 15 years ago) in Stockholm.
I had a mac laptop, my work laptop was also a mac. And I was working with Postgres.
I had the job for about 2 weeks before they let me go.
I noticed at some point that they had installed a root-kit on my computer.
(the were a sports betting company)
@zedaardv outch - sorry to hear that 🫤
I mean there are some cases where device surveillance makes sense from a compliance perspective, but it should never be a surprise and be clearly documented upfront.
@mushu "To me this is the visual language of Blockchain/NFT scams mixed with the butthole motifs that AI companies like so much."
Beautifully written :D
/dev/aubergine0
Fiona
Cindʎ Xiao 🍉
Carsten Hoffmann
Thomas Guyot-Sionnest
Joshix
Melissa 
Abie
gkrnours
Jari Komppa 🇫🇮
Soblow Xaselgio 
svø
Freya Arson
Agitatra 🚲🐻🌿🇪🇺🇺🇦
zedaardv
Z̈oé
nycki
Un Bourguignon
I AM BANKSY ☕ / 🗑🔥
지지 ᚠᚱᛖᛃᚨ Daniel 黄法官 CyReVolt
kaylime
Peritia System
Kat the Leopardess