A recent security research project by Snyk Security Labs discovered a full workspace takeover vulnerability in the Gitpod platform via WebSocket connections, which allowed attackers to leverage a widely misunderstood vulnerability called Cross-Site WebSocket Hijacking and bypass SameSite cookies. The vulnerability was found in Gitpod's server component, specifically in its JSONRPC API served over WebSocket connections. The researchers were able to exploit this vulnerability by serving an HTML file that contained malicious JavaScript code, which ultimately granted them full control over the user's workspaces. The vulnerability was responsibly disclosed to Gitpod and resolved within a single working day, with a new version of the platform released shortly after. This incident highlights the importance of considering additional security risks introduced by cloud-based development environments and emphasizes the need for responsible disclosure and timely patching of vulnerabilities in such platforms.