W3 Total Cache WordPress plugin vulnerable to PHP command injection

WordPress plugin can be exploited to run PHP commands on the server by posting a comment that contains a malicious payload.
GitHub

Install Records should only be cleared after uninstall success

dotnet.vscode-dotnet-runtime (o 🍎 macOS Build and Test) dotnet.vscode-dotnet-runtime (o 🐧 linux Build and Test) dotnet.vscode-dotnet-runtime (o 🧶 ESLint) dotnet.vscode-dotnet-runtime (o 🪟 windows ...
GitHub

Use nice label in tool picker for MCP Servers install from the registry

When you install an MCP Server from the Registry, it has this nice name... I would expect that name to be used in the tool picker. In this case, then the naming style would be aligned with Extensions.