Is aPinix Theme safe to use?

aPinix Theme has a security risk score of 64.99/100 (MEDIUM risk). Our security analysis detected 236 findings. Review the detailed security assessment below to understand the specific risks before installation.

What are the security risks of aPinix Theme?

Based on our automated security analysis, aPinix Theme presents medium risk level. The extension is analyzed for malware patterns, secret exposure, network communications, permissions, and supply chain vulnerabilities.

How is the security score calculated?

Risky Plugins calculates security scores using weighted categories: severity of findings (25 points max), malware detections (35 points), secret exposure (28 points), network communications (10 points), and obfuscation (10 points). Scores range from 0-100, with higher scores indicating greater risk.

What does CRITICAL, HIGH, MEDIUM, LOW, MINIMAL risk mean?

CRITICAL (80-100): Severe security issues like malware. HIGH (60-79): Significant vulnerabilities. MEDIUM (40-59): Moderate security concerns. LOW (20-39): Minor issues. MINIMAL (0-19): Very low risk. Always review findings before installing any extension.

Is "aPinix Theme" on OpenVSX Registry Safe to Install?

Name: aPinix Theme
Availability: InStock
Author: aPinix

aPinix · openvsx · v1.0.1

A VSCode Dark Theme based on Monokai theme. Ease on your eyes. Code till you fall asleep.

Risk Assessment

Analyzed

64.99

out of 100

MEDIUM

236 security findings detected across all analyzers

Open VSX extension analyzed via package manifest and static code analysis

Severity Breakdown

Critical

115

High

Medium

Low

Info

Finding Categories

115

Malware Signatures

IoC Indicators

YARA Rules Matched

3 rules(115 hits)

postinstall file manipulation postinstall file download postinstall network communication

About This Extension

A VSCode Dark Theme based on Monokai theme. Ease on your eyes. Code till you fall asleep.

Detailed Findings

181 total

YARA Rule Matches

3 rules

Indicators of Compromise

Network indicators, suspicious strings, and potential IoCs extracted during analysis

URLs

IP Addresses

Domains

Strings

All Indicators · 54

Domain

detected Domain: meta.attribute-with-value.id

XIOC detected Domain: meta.attribute-with-value.id

extracted_from_files

Domain

detected Domain: meta.group

XIOC detected Domain: meta.group

extracted_from_files

Domain

detected Domain: github.com

XIOC detected Domain: github.com

extracted_from_files

Domain

detected Domain: twitter.com

XIOC detected Domain: twitter.com

extracted_from_files

Domain

detected Domain: schemas.openxmlformats.org

XIOC detected Domain: schemas.openxmlformats.org

extracted_from_files

detected IP: 1::

XIOC detected IP: 1::

extracted_from_files

detected IP: 4::

XIOC detected IP: 4::

extracted_from_files

detected IP: b::

XIOC detected IP: b::

extracted_from_files

Domain

detected Domain: support.type.property

XIOC detected Domain: support.type.property

extracted_from_files

Domain

detected Domain: punctuation.definition.group

XIOC detected Domain: punctuation.definition.group

extracted_from_files

detected IP: ::

XIOC detected IP: ::

extracted_from_files

URL

detected URL: http://schemas.microsoft.com/developer/vsx-schema/2011

XIOC detected URL: http://schemas.microsoft.com/developer/vsx-schema/2011

extracted_from_files

URL

detected URL: http://schemas.microsoft.com/developer/vsx-schema-design/2011

XIOC detected URL: http://schemas.microsoft.com/developer/vsx-schema-design/2011

extracted_from_files

URL

detected URL: https://github.com/aPinix/apinix-theme-vscode.git

XIOC detected URL: https://github.com/aPinix/apinix-theme-vscode.git

extracted_from_files

Domain

detected Domain: l.tf

XIOC detected Domain: l.tf

extracted_from_files

URL

detected URL: https://github.com/aPinix/apinix-theme-vscode#readme

XIOC detected URL: https://github.com/aPinix/apinix-theme-vscode#readme

extracted_from_files

URL

detected URL: https://marketplace.visualstudio.com/items?itemName=softwaredotcom.apinix-theme-vscode

XIOC detected URL: https://marketplace.visualstudio.com/items?itemName=softwaredotcom.apinix-theme-vscode

extracted_from_files

URL

detected URL: https://vsmarketplacebadge.apphb.com/version-short/softwaredotcom.apinix-theme-vscode.svg?style=flat-square&color=00b4ee&label=marketplace

XIOC detected URL: https://vsmarketplacebadge.apphb.com/version-short/softwaredotcom.apinix-theme-vscode.svg?style=flat-square&color=00b4ee&label=marketplace

extracted_from_files

URL

detected URL: https://vsmarketplacebadge.apphb.com/installs-short/softwaredotcom.apinix-theme-vscode.svg?style=flat-square&color=00b4ee

XIOC detected URL: https://vsmarketplacebadge.apphb.com/installs-short/softwaredotcom.apinix-theme-vscode.svg?style=flat-square&color=00b4ee

extracted_from_files

URL

detected URL: https://vsmarketplacebadge.apphb.com/rating-short/softwaredotcom.apinix-theme-vscode.svg?style=flat-square&color=00b4ee

XIOC detected URL: https://vsmarketplacebadge.apphb.com/rating-short/softwaredotcom.apinix-theme-vscode.svg?style=flat-square&color=00b4ee

extracted_from_files

URL

detected URL: https://github.com/aPinix/apinix-theme-vscode/raw/HEAD/images/apinix-theme-icon.png

XIOC detected URL: https://github.com/aPinix/apinix-theme-vscode/raw/HEAD/images/apinix-theme-icon.png

extracted_from_files

URL

detected URL: https://marketplace.visualstudio.com/items?itemName=aPinix.apinix-theme)

XIOC detected URL: https://marketplace.visualstudio.com/items?itemName=aPinix.apinix-theme)

extracted_from_files

URL

detected URL: https://github.com/aPinix/apinix-theme-vscode/raw/HEAD/images/apinix-theme-promo.png)

XIOC detected URL: https://github.com/aPinix/apinix-theme-vscode/raw/HEAD/images/apinix-theme-promo.png)

extracted_from_files

Domain

detected Domain: readme.md

XIOC detected Domain: readme.md

extracted_from_files

Domain

detected Domain: changelog.md

XIOC detected Domain: changelog.md

extracted_from_files

Other

detected Email: [email protected]

XIOC detected Email: [email protected]

extracted_from_files

URL

detected URL: http://schemas.openxmlformats.org/package/2006/content-types

XIOC detected URL: http://schemas.openxmlformats.org/package/2006/content-types

extracted_from_files

URL

detected URL: https://twitter.com/apinix

XIOC detected URL: https://twitter.com/apinix

extracted_from_files

URL

detected URL: https://github.com/aPinix/apinix-theme-vscode

XIOC detected URL: https://github.com/aPinix/apinix-theme-vscode

extracted_from_files

URL

detected URL: https://github.com/aPinix/apinix-theme-vscode/issues

XIOC detected URL: https://github.com/aPinix/apinix-theme-vscode/issues

extracted_from_files

Domain

detected Domain: e.vn

XIOC detected Domain: e.vn

extracted_from_files

Domain

detected Domain: ľb.ru

XIOC detected Domain: ľb.ru

extracted_from_files

Domain

detected Domain: w.vn

XIOC detected Domain: w.vn

extracted_from_files

Domain

detected Domain: c.gt

XIOC detected Domain: c.gt

extracted_from_files

Domain

detected Domain: schemas.microsoft.com

XIOC detected Domain: schemas.microsoft.com

extracted_from_files

Domain

detected Domain: microsoft.visualstudio.services.links.support

XIOC detected Domain: microsoft.visualstudio.services.links.support

extracted_from_files

Domain

detected Domain: license.md

XIOC detected Domain: license.md

extracted_from_files

Domain

detected Domain: kikc.sg

XIOC detected Domain: kikc.sg

extracted_from_files

Domain

detected Domain: s.ga

XIOC detected Domain: s.ga

extracted_from_files

Domain

detected Domain: b.ni

XIOC detected Domain: b.ni

extracted_from_files

Domain

detected Domain: o.do

XIOC detected Domain: o.do

extracted_from_files

Domain

detected Domain: s.bg

XIOC detected Domain: s.bg

extracted_from_files

Domain

detected Domain: l.sz

XIOC detected Domain: l.sz

extracted_from_files

Domain

detected Domain: source.git-show.author

XIOC detected Domain: source.git-show.author

extracted_from_files

Domain

detected Domain: source.git-show.date

XIOC detected Domain: source.git-show.date

extracted_from_files

Domain

detected Domain: meta.diff.git-diff.header.to

XIOC detected Domain: meta.diff.git-diff.header.to

extracted_from_files

Domain

detected Domain: meta.diff.git-diff.header.extended.index.to

XIOC detected Domain: meta.diff.git-diff.header.extended.index.to

extracted_from_files

Domain

detected Domain: meta.diff.header.to

XIOC detected Domain: meta.diff.header.to

extracted_from_files

Domain

detected Domain: marketplace.visualstudio.com

XIOC detected Domain: marketplace.visualstudio.com

extracted_from_files

Domain

detected Domain: vsmarketplacebadge.apphb.com

XIOC detected Domain: vsmarketplacebadge.apphb.com

extracted_from_files

Domain

detected Domain: markup.underline.link

XIOC detected Domain: markup.underline.link

extracted_from_files

Domain

detected Domain: constant.other.property

XIOC detected Domain: constant.other.property

extracted_from_files

Domain

detected Domain: entity.name

XIOC detected Domain: entity.name

extracted_from_files

Domain

detected Domain: gmail.com

XIOC detected Domain: gmail.com

extracted_from_files

Security Analysis Summary

Security Analysis Overview

aPinix Theme is a OpenVSX Registry extension published by aPinix. Version 1.0.1 has been analyzed by the Risky Plugins security platform, receiving a risk score of 64.99/100 (MEDIUM risk) based on 236 security findings.

Risk Assessment

This extension presents high security risk. Significant concerns were identified during analysis. It is not recommended for use in sensitive or production environments without thorough review.

Findings Breakdown

High: 115 finding(s)
Medium: 55 finding(s)

What Was Analyzed

The security assessment covers multiple analysis categories:

Malware Detection: YARA rule matching against 2,400+ malware signatures
Secret Detection: Scanning for exposed API keys, tokens, and credentials
Static Analysis: Code-level security analysis for common vulnerability patterns
Network Analysis: Detection of suspicious network communications and endpoints
Obfuscation Detection: Identification of code obfuscation techniques

Developer Information

aPinix Theme is published by aPinix on the OpenVSX Registry marketplace.

Recommendation

This extension is not recommended for installation without thorough manual review. Consider alternatives with lower risk scores, or contact the developer to address the identified security concerns.

Source Code Viewer

Source Code Not Available

Source code is not available for this version of the extension.

Frequently Asked Questions

Similar Extensions

Related extensions from the same publisher or marketplace

aPinix Theme

André Pinto

CRITICAL 2K users

indent-jump

aPinix

CRITICAL 411 users

Indent Jump

André Pinto

HIGH 5K users

pterodactyl-sftp

minhmcpc

CRITICAL 668 users

choreo

wso2

CRITICAL 7K users

amp

sourcegraph

CRITICAL 776K users

Risk Assessment

Severity Breakdown

Finding Categories

YARA Rules Matched

About This Extension

Detailed Findings

HASH-c38c1075e739a4fd

HASH-b091cd0bdc389c92

HASH-eed9bef7d828a4b8

HASH-9f1e59cf248013c5

HASH-d2daaec86eb7477d

HASH-e94ee429c7aa67d6

HASH-846a23cb7f702e4a

HASH-d05ba947440513c4

HASH-363232d8286b1389

HASH-9ffe228cc3e17e63

HASH-363232d8286b1389

HASH-baae21b1eb5d64ae

HASH-6f2ee85f99183ddc

HASH-c005583309763e24

HASH-0a2e1e734cbdb099

HASH-543ef374f46c83b1

HASH-c2933787d95de945

HASH-363232d8286b1389

HASH-d06d4f3ea98da041

HASH-b0fd18eae8b6c801

HASH-004da2ab3e5aa69c

HASH-269bcd71eaa6686d

HASH-675894e5b08d3f16

HASH-748fd9c6e45c88be

HASH-b84f55a4f0c60b48

HASH-bafb68e94e37d90b

HASH-56a186c8af28be24

HASH-b84f55a4f0c60b48

HASH-c7b79c52ec216c5b

HASH-99d98af8837fe3fc

HASH-b091cd0bdc389c92

HASH-7c80ba8a338cd2bc

HASH-ff28e2d20b8c1013

HASH-b61b6a526dfccaba

HASH-543ef374f46c83b1

HASH-8aea15c4c77a1bbe

HASH-219c8158e3fb69d5

HASH-305b4fc49354930b

HASH-b84f55a4f0c60b48

HASH-363232d8286b1389

HASH-baae21b1eb5d64ae

HASH-fcbb5e95e9f70db7

HASH-474fb14ce839d761

HASH-363232d8286b1389

HASH-c049c269344e3324

HASH-c049c269344e3324

HASH-3408018f3c9c1d84

HASH-b61b6a526dfccaba

HASH-b8332cddfceec060

HASH-b091cd0bdc389c92

HASH-219c8158e3fb69d5

HASH-b091cd0bdc389c92

HASH-ba1163e91de9ff43

HASH-7f294f47c8a7074c

HASH-b091cd0bdc389c92

HASH-9ef240650188b7f3

HASH-543ef374f46c83b1

HASH-846a23cb7f702e4a

HASH-363232d8286b1389

HASH-c7b79c52ec216c5b

HASH-c38c1075e739a4fd

HASH-37f6f7041a9994fa

HASH-219c8158e3fb69d5

HASH-675894e5b08d3f16

HASH-4026602dea2e3a00

HASH-363232d8286b1389

YARA Rule Matches

postinstall file manipulation

postinstall file download

postinstall network communication

Indicators of Compromise

All Indicators · 54

Security Analysis Summary

Security Analysis Overview