Replying to @domchell
Nice! VScode extension security model is terrible, we did some similar work recently. Also, you don't even need to "install" it, just drop the extension files into a specific folder, or stealthily add it as a dependency of an existing one (and they all have tons of dependencies).
1
0
6
Thanks, and that's good to know, will have a poke around with dependencies too!
0
0
1
Replying to @domchell
The use of osascript seems like a fragile indicator. Can you utilize other macOS built ins to execute code?
1
0
0
You don't have to use osascript no, that was just for demonstration purposes. You have full programmatic execution in the language of your extension.
0
0
1