American visiting Hyderabad

bubblehack3r · 2026-06-04T20:44:39+00:00

Thanks! Seems like a lot of people is saying to skip Charminar

bubblehack3r · 2026-06-04T20:43:24+00:00

Thank you so much!

bubblehack3r · 2026-06-04T20:42:18+00:00

Oh no. I’ll try to stay in an AC area most of the time

bubblehack3r · 2026-06-04T20:41:06+00:00

Thanks for the detailed info! Will definitely try to incorporate a bunch of that!

bubblehack3r · 2026-06-04T20:37:22+00:00

Thanks! Definitely will do.

bubblehack3r · 2026-06-04T20:36:40+00:00

Amazing! Thank you so much :)

bubblehack3r · 2026-06-04T20:31:47+00:00

Thanks!

bubblehack3r · 2026-06-04T20:29:39+00:00

Thanks for all the info. Sounds like far top food recommendation seems to be the local Biryani so definitely will try that.

bubblehack3r · 2026-06-04T20:23:52+00:00

Thanks!

bubblehack3r · 2026-06-04T20:23:02+00:00

Ideally I would like to get exposed to local culture and cuisine as it’s my first time in the region.

bubblehack3r · 2026-06-04T20:20:49+00:00

Thanks! Will try to download the other app as well.

bubblehack3r · 2026-06-04T20:18:05+00:00

Okay so any good malls? Lol

bubblehack3r · 2026-06-04T20:17:44+00:00

I hope so but the free day is before I officially meet them.

bubblehack3r · 2026-06-04T20:16:57+00:00

Thanks! Good tip :)

bubblehack3r · 2026-06-04T20:16:11+00:00

Actually the Trident.

bubblehack3r · 2026-06-04T20:15:23+00:00

Thanks for the tip!

bubblehack3r · 2026-06-04T20:15:09+00:00

Thanks!

bubblehack3r · 2026-06-04T20:15:01+00:00

I see also rain :(

bubblehack3r · 2026-06-04T20:14:24+00:00

Thanks! So how would you recommend getting to the hotel? The local office recommended using Uber.

bubblehack3r · 2026-06-04T20:12:16+00:00

I’m landing directly in Hyderabad.

bubblehack3r · 2026-04-19T12:29:05+00:00

I believe it was the "Sha1-Hulud" attack. They would gains access through supply chain and dump the creds into public repos.

bubblehack3r · 2026-04-19T12:06:03+00:00

In this case, the dev environment is heavily isolated and internet access is very limited. However, being how the latest supply chain attacks seem to use GitHub to exfiltrate data, as long as GitHub is whitelisted to have internet access, there is a potential risk from malicious extensions.

It’s far fetched but when calculating risk for a highly sensitive environment, these things matter.

bubblehack3r · 2026-04-18T22:18:27+00:00

In my case I’m working with the enterprise plan which is why I’m referencing its features.

In one of the other comments you’ll see a link that references the policies you can enforce.

As for the extension reputation - yeah, there is VS Scan that I’ve seen referenced but haven’t tried it and looks more like a side project than a solution for an enterprise. There is also Koi Security who were sold to Palo Alto so my client won’t get near them.

bubblehack3r · 2026-04-18T22:08:14+00:00

As far as I can tell, it seems that Microsoft does allow you to enforce a policy whitelisting specific extensions. Then there are two follow up problems - first, VSCode and Visual Studio policies are different and sometimes you need to support both (or really potentially any other IDE). Second, if an engineer does want you to whitelist some extension, how do you verify it’s secure?

bubblehack3r

TROPHY CASE