Is there a malicious solidity VSCode extension? It seems the version from `juan-blanco` has more downloads/better reviews, despite being new. The version from `juanblanco` has bad reviews, less downloads, but longer history. The newer version DID NOT WORK, so I looked further. 🧵

Looking further into the extensions, it seems the older one has a lot to show under the features tab, while the newer one has much less. This raises further suspicions about whether the newer one is real at all.

Looking further, I wanted to see if the resources links lined up. They both link to the same GitHub repo. Inspires confidence, but it doesn't seem to be the same extension. Their license link yields the same text body, despite being different links. Marketplace links differ.

It is possible that the newer extension didn't work as I am not using a reliable internet connection at the moment. I wasn't getting any syntax highlighting, so I went to check its settings and found it had none. That's when I discovered I had installed a duplicate extension.

After installing the older extension, everything is working as expected. Luckily, I haven't exported, copied, or utilized any private keys or wallets. But because I did install this, and it seems sketchy, I'm going to perform a system wipe. @_SEAL_Org @pcaversaccio please look!

@hsgeth Can you confirm if the ID is the same? Downloads/reviews might be different for Cursor's marketplace in comparison to VSCode's.

@_SEAL_Org @pcaversaccio Clarification: this is on Cursor's marketplace, not VSCode. I incorrectly assumed they used the same marketplace. @cursor_ai please remove the malicious extension.