FYI:
1 Like
Interesting, thanks for sharing. In general, the user has to trust extension developers that code in the extension is secure and this news does not change this. However, this is yet another reminder that ensuring security by code review can be very complex task, as a malicious actor may have some very obscure ways to sneak in code.
At Slicer level, we will continue to encourage extension developers to not pin specific package versions but be as permissive with version requirements as possible.
We could improve security in general by making it easier to run Slicer in a sandboxed environment. This would also be directly useful for allowing AI chatbots to run Python code in Slicer using MCP.