Re @olafurw We are working to make development environments safer and reduce the possibility of supply-chain attacks, even in code that is cloned locally. You can read more in the link below, but please do share your feedback with us on how it could be improved.
https://aka.ms/WorkspaceTrust

https://twitter.com/code/status/1403457108910116867