Extension Zowe.vscode-extension-for-zowe disappeared from VSCode Marketplace

[t1m0thyj]

@mariaghiondea , thanks for the updates! Will we help if re-submit the latest version with the host-dependent extensions (windows, Linux, Mac)?

Originally posted by @ivankravets in #1114

The Zowe Explorer extension was wrongly flagged as malicious and has disappeared from the VSMarketplace.

We are trying to re-upload the latest version of our extension v3.0.3, and getting the following error:

Error: Similar extension display name: Zowe Explorer already exists. To reduce name confusion, please enter a name that differs more. For help, you can contact [email protected].

Please help us to get past this error.

[mariaghiondea]

You should be able to upload now.
We are also working on our side to reupload and update stats. So you can wait for that.

[t1m0thyj]

Thanks, we were able to re-upload v3.0.3 and are now uploading some older releases.

[mariaghiondea]

Thank you so much for the help! And apologies for the inconvenience.
The versions that were flagged were older versions, please don't upload anything older than 1.0.0.

[mariaghiondea]

I've been posting this across our different threads, so I wanted to share it here too:

For a bit of context, my team (the Visual Studio Marketplace team) is doing a focused effort on security and looking for ways to become more proactive in the space, as well as react to existing threats. As part of that, we were scanning all extensions and discovered that 45 of them had older versions that needed to be removed. They were flagged as malicious because they contained the flatmap-stream npm package that is known bitcoin mining malware.

Due to miscommunication, this resulted in the removal of several extensions where only the older versions were flagged, and only those should have been removed. This affected your extension.

We realized it a few hours after and started taking action. This included communication to all package owners affected and trying to recover the extensions.
At this time, latest version for these extensions is recovered and install counts restored. We will work to bring back other stats too, during business hours next week.

This caused a lot of disruption for the community, and for the team.
We greatly appreciate everyone's patience and help!

We are currently doing an RCA. We are already implementing some of the repair items, to:

• Increase transparency by communicating such impactful actions to the publishers and community before we take them and after we take them
• Prevent the wrong action to be taken and look for gradual progression towards irreversible action
• Improve the ability to recover data (more, faster, easier)

Please let me know your feedback. We'd love to use it in our RCA!

[madhurivadaligithub]

We sincerely apologize for the inconvenience. And really appreciate your patience.
The latest version of the extension has been successfully recovered.
At this time, the install count has also been restored.

Regards,
VS Marketplace Team