Hacker News new | past | comments | ask | show | jobs | submit login

It’s an option, just as it is for VSCode.

Personally I love seeing this option because it lets me run my dev environment in a local VM. Sadly, I no longer trust community-developed editor plug-ins or dev tools to be free from malicious code. We talk about the problems with npm dependencies all the time on HN. How often do you audit the dependencies of your favorite VSCode plugins? I simply don’t want that code running on my system with full user access, and this architecture lets me avoid that. Of course there are still risks with it having access to dev code, but reducing potential exposure is a good thing.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact