CVE-2019-16765

Vulnerability CVE-2019-16765 affects the Visual Studio Code CodeQL extension. Opening a specially prepared directory tree as a workspace while the extension is active can lead to arbitrary code execution on the user’s behalf. The issue is fixed in CodeQL extension version 1.0.1; upgrade via VS Co...