Currently, simply opening a project can get you compromised, as the LSP will run all #run in the code base.
To prevent such a case or at least reduce the risk of that happening, I was thinking of the following:
VSCODE:
Other editors (nvim, etc.):
The bigger question is can we do something about other editors, that we don't support?
One solution would be to do something like nvim, where the LSP keeps a trust store of what files to trust. But since it's the LSP it would not be that usable, since it can not offer any Popup to make managing it simple. Maybe we don't have any good solution for this case.
Feed back would be appreciated!
Currently, simply opening a project can get you compromised, as the LSP will run all
#runin the code base.To prevent such a case or at least reduce the risk of that happening, I was thinking of the following:
VSCODE:
Other editors (nvim, etc.):
The bigger question is can we do something about other editors, that we don't support?
One solution would be to do something like nvim, where the LSP keeps a trust store of what files to trust. But since it's the LSP it would not be that usable, since it can not offer any Popup to make managing it simple. Maybe we don't have any good solution for this case.
Feed back would be appreciated!