Investigate security implications of connecting to workspace though WebIDE

Problem

We plan to connect to the workspace using WebIDE. The WebIDE uses WebSockets to connect to the VS Code Server running inside the workspace.

Are there any security issues we should pay attention to?

• Is there a possibility that the WebIDE gets compromised and an attacker gets remote execution in the workspace?
• Is there a possibility that malicious code in the workspace could do something to the WebIDE running in the browser?