Had similar concerns, but just noticed they seem to be taking this more seriously now:

skue • yesterday at 4:34 AM • 2 replies • view on HN

Had similar concerns, but just noticed they seem to be taking this more seriously now: https://zed.dev/blog/secure-by-default

sevenseacat • yesterday at 1:21 PM

Seems not applicable, given it will still download and install random LSPs for you without asking.

yellow_lead • yesterday at 6:42 AM

Is that directly related to the GitHub issue? Or you just mean that they're taking security more seriously?

I was searching the article you linked to see if it addresses the GH issue in any way, but it seems to not.

alt Hacker News