Vs Code Extension #58
Description
Following the recent Axios incident, I noticed Socket highlighted on the npm website and decided to take a look. I was about to install the VS Code extension, however VS Code warns that the extension’s publisher is not verified.
Given that this is a security‑focused tool, this is a concerning first impression. Without publisher or domain verification, it’s difficult to establish confidence that the extension is genuinely published and maintained by Socket.
Could you clarify why the publisher domain is not verified, and whether there are plans to complete this verification? Once verified, I’d be much more comfortable evaluating and potentially adopting the extension.