top | item 44571033

(no title)

hexomancer | 7 months ago

> Regarding your last point, for the vast majority of open source SW releases, we can never be sure if the release we get is produced from the same code we see. I do not know if that is the case with VScode addons, but you get my point

You actually can depackage vscode's .vsix files (it is just a zip file) and compare the package contents to the repository.

discuss

4gotunameagain|7 months ago

Yes but realistically, who is going to do that ?

Again, I am not questioning your integrity or your plugin.