Is "Align by RegEx Rev" on VS Code Marketplace Safe to Install?

Thang · vscode · v1.0.6

Aligns selected lines of text by a regular expression.

Risk Assessment

Analyzed
45.11
out of 100
MEDIUM

30 security findings detected across all analyzers

VS Code extension analyzed via package manifest and static code analysis

Severity Breakdown

0
Critical
0
High
27
Medium
3
Low
0
Info

Finding Categories

27
IoC Indicators

YARA Rules Matched

3 rules
postinstall file manipulation postinstall network communication postinstall system command

About This Extension

Aligns selected lines of text by a regular expression.

Detailed Findings

3 total

YARA Rule Matches

3 rules

Indicators of Compromise

Network indicators, suspicious strings, and potential IoCs extracted during analysis

URLs
7
IP Addresses
4
Domains
16
Strings
27

All Indicators · 27

Domain
detected Domain: px0px4px3px0px.py

XIOC detected Domain: px0px4px3px0px.py

extracted_from_files

IP
detected IP: 9::

XIOC detected IP: 9::

extracted_from_files

URL
detected URL: https://github.com/thangckt/vsc-align_by_regex_rev/raw/HEAD/images/example1.gif)

XIOC detected URL: https://github.com/thangckt/vsc-align_by_regex_rev/raw/HEAD/images/example1.gif)

extracted_from_files

URL
detected URL: https://github.com/thangckt/vsc-align_by_regex_rev/raw/HEAD/images/example2.gif)

XIOC detected URL: https://github.com/thangckt/vsc-align_by_regex_rev/raw/HEAD/images/example2.gif)

extracted_from_files

URL
detected URL: https://github.com/thangckt/vsc-align_by_regex_rev.git

XIOC detected URL: https://github.com/thangckt/vsc-align_by_regex_rev.git

extracted_from_files

URL
detected URL: https://github.com/thangckt/vsc-align_by_regex_rev/issues

XIOC detected URL: https://github.com/thangckt/vsc-align_by_regex_rev/issues

extracted_from_files

URL
detected URL: https://github.com/thangckt/vsc-align_by_regex_rev#readme

XIOC detected URL: https://github.com/thangckt/vsc-align_by_regex_rev#readme

extracted_from_files

Domain
detected Domain: o.zm

XIOC detected Domain: o.zm

extracted_from_files

Domain
detected Domain: schemas.microsoft.com

XIOC detected Domain: schemas.microsoft.com

extracted_from_files

Domain
detected Domain: microsoft.visualstudio.services.links.support

XIOC detected Domain: microsoft.visualstudio.services.links.support

extracted_from_files

Domain
detected Domain: readme.md

XIOC detected Domain: readme.md

extracted_from_files

Domain
detected Domain: changelog.md

XIOC detected Domain: changelog.md

extracted_from_files

URL
detected URL: http://schemas.openxmlformats.org/package/2006/content-types

XIOC detected URL: http://schemas.openxmlformats.org/package/2006/content-types

extracted_from_files

URL
detected URL: https://marketplace.visualstudio.com/items?itemName=janjoerke.align-by-regex)

XIOC detected URL: https://marketplace.visualstudio.com/items?itemName=janjoerke.align-by-regex)

extracted_from_files

Domain
detected Domain: m.vc

XIOC detected Domain: m.vc

extracted_from_files

Domain
detected Domain: part.js.map

XIOC detected Domain: part.js.map

extracted_from_files

Domain
detected Domain: line.parts

XIOC detected Domain: line.parts

extracted_from_files

Domain
detected Domain: block.js.map

XIOC detected Domain: block.js.map

extracted_from_files

Domain
detected Domain: generator.next

XIOC detected Domain: generator.next

extracted_from_files

Domain
detected Domain: extension.js.map

XIOC detected Domain: extension.js.map

extracted_from_files

Domain
detected Domain: line.js.map

XIOC detected Domain: line.js.map

extracted_from_files

Domain
detected Domain: string-utils.js.map

XIOC detected Domain: string-utils.js.map

extracted_from_files

IP
detected IP: 6::

XIOC detected IP: 6::

extracted_from_files

IP
detected IP: ::b

XIOC detected IP: ::b

extracted_from_files

Domain
detected Domain: schemas.openxmlformats.org

XIOC detected Domain: schemas.openxmlformats.org

extracted_from_files

Domain
detected Domain: fow.ge

XIOC detected Domain: fow.ge

extracted_from_files

IP
detected IP: b::

XIOC detected IP: b::

extracted_from_files

Security Analysis Summary

Security Analysis Overview

Align by RegEx Rev is a Visual Studio Code Marketplace extension published by Thang. Version 1.0.6 has been analyzed by the Risky Plugins security platform, receiving a risk score of 45.11/100 (MEDIUM risk) based on 30 security findings.

Risk Assessment

This extension presents moderate security risk. Several findings were detected that may warrant attention. Users should carefully review the permissions and findings before installation.

Findings Breakdown

  • Medium: 27 finding(s)
  • Low: 3 finding(s)

What Was Analyzed

The security assessment covers multiple analysis categories:

  • Malware Detection: YARA rule matching against 2,400+ malware signatures
  • Secret Detection: Scanning for exposed API keys, tokens, and credentials
  • Static Analysis: Code-level security analysis for common vulnerability patterns
  • Network Analysis: Detection of suspicious network communications and endpoints
  • Obfuscation Detection: Identification of code obfuscation techniques

Developer Information

Align by RegEx Rev is published by Thang on the Visual Studio Code Marketplace marketplace.

Recommendation

Exercise caution with this extension. Review the detailed findings and ensure the requested permissions align with the extension's stated functionality before installation.

Frequently Asked Questions

Similar Extensions

Related extensions from the same publisher or marketplace

Azure Resource Manager (ARM) Tools

Microsoft

CRITICAL 1.5M users

EveryOps Extension

EveryOps-ai

CRITICAL 21 users

SayDeploy - Copilot Assistant

LunarWerx

CRITICAL 96 users

AVAP API Release Manager

AVAP Framework

CRITICAL 94 users

Copilot MCP + Agent Skills Manager

Automata Labs

CRITICAL 92K users

Code Guardian

DreamersRedemption

CRITICAL 43 users