[solomatov]

What I don't like about plugin system is security. You install extensions from the internet which have full access to your computer including the source code you're working with. Personally, I wouldn't trust any extension or plugin not provided by a major company.

[jamesgeck0]

> You install extensions from the internet which have full access to your computer

This is an issue in almost every other editor that has plugins! Vim, Emacs, Sublime Text, etc have widely used automatic plugin installation tools.

You can manually download and install plugins if you're worried about a 3rd party issuing malicious automatic updates.

[kbumsik]

That point is where VS Code is strong. These extensions are made by the VS Code team itself. Apart from that, AFAIK these plugins are not installed as binary but source code. They have transparency at least.

[solomatov]

>Apart from that, AFAIK these plugins are not installed as binary but source code. They have transparency at least.

You can say the same about browser extensions. They have the same distribution mechanism as VS code plugins, and still there's a good number of them doing shady stuff.