VYPR
Get started
← All advisories
Moderate severityOSV Advisory· Published Dec 29, 2025· Updated Dec 30, 2025

Unexpected untrusted code execution in github.com/golang/vscode-go

CVE-2025-68120

Description

To prevent unexpected untrusted code execution, the Visual Studio Code Go extension is now disabled in Restricted Mode.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/golang/vscode-goGo
< 0.52.10.52.1

Affected products

1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.