the-dipsy

I ran into the same issue while trying to extend Surreal's signup with email verification: A rust service listens for new records being created in an "email" table and sends...

@the-mikedavis I'd be fine with your workspace trust concept once it is implemented and if the prompt is absolutely clear about the risks. I'd really like the ability to activate...

@archseer There is one `workspace-config = true` for `config.toml` and one for `languages.toml`. The current code structure makes it way easier to implement this way and I think it makes...

@pascalkuthe It seems entirely reasonable to me to have language servers statically analyze code, provide snippets etc. without opening up the gates for ACE :flushed: I'm not a heavy user...

Can other users of VSCode confirm that enabling language servers is coupled to loading project local configurations and executing code from them? I've never really used the thing but that'd...

@pascalkuthe Certainly no proof and unreliable but often decent at reiterating and summarizing information. I know that rust does this but it therefore is also pretty much the first thing...

@archseer Oh, shoot. I refactored a bunch already. Is my version okay for you?

As described in [the issue that just mentioned this one](https://github.com/helix-editor/helix/issues/9514), as of [this PR](https://github.com/helix-editor/helix/pull/1249) the user doesn't even need to have any language servers installed to be vulnerable to the...

@lazytanuki [remarked](https://github.com/helix-editor/helix/issues/9514#issuecomment-1925799134) that setting `editor.lsp.enable = false` doesn't fix this, because a project-local *.helix/config.toml* can override this. I was not aware that local *config.toml*s work too. I would therefor still...

Additional to rate limiting, I'd consider fine-grain control over the permissions of scoped users an essential feature before deploying SurrealDB as a public facing BaaS, because I'd consider every unnecessarily...