VSCode's plugin architecture is a security nightmare and an extremely juicy target for supply chain attacks.

Does Zed address this in any meaningful way?