← Back to context Comment by throw-12-16 3 hours ago Not to mention its extremely insecure plugin architecture. 2 comments throw-12-16 Reply diarrhea 1 hour ago I've had a color scheme plugin yanked from my IDE a while back, as it went malicious (Material Theme). It's just a bunch of hex codes, how is that even possible? Baffling and disappointing indeed. throw-12-16 1 hour ago It gets even worse when you realize most extensions ship bundled node_modules and are a very juicy target for supply chain attacks.
diarrhea 1 hour ago I've had a color scheme plugin yanked from my IDE a while back, as it went malicious (Material Theme). It's just a bunch of hex codes, how is that even possible? Baffling and disappointing indeed. throw-12-16 1 hour ago It gets even worse when you realize most extensions ship bundled node_modules and are a very juicy target for supply chain attacks.
throw-12-16 1 hour ago It gets even worse when you realize most extensions ship bundled node_modules and are a very juicy target for supply chain attacks.
I've had a color scheme plugin yanked from my IDE a while back, as it went malicious (Material Theme). It's just a bunch of hex codes, how is that even possible? Baffling and disappointing indeed.
It gets even worse when you realize most extensions ship bundled node_modules and are a very juicy target for supply chain attacks.