The server running at the remote end can execute code on the client. If an SSH server can do that it's a security issue and a bug.

The README does warn about this: "A compromised remote could use the VS Code Remote connection to execute code on your local machine."

https://marketplace.visualstudio.com/items?itemName=ms-vscod...