Why is your position so absolute? There are trade-offs and as engineers we typically would balance those — for example, local development avoids putting the network in the critical path while remote development allows perfect fidelity with your deployment environment, can be an important security win[1], and could make it easier to access resources which you don't have enough space or want to store locally.
Neither of those is right or wrong globally: your particular situation will determine how much you weight each of them.
1. e.g. if you install the wrong Node module, it can still wreak havoc on your remote environment but it can't steal your local credentials, trojan your workstation, or attack your other projects — and by splitting your credentials from the remote environment's you can usually run with a far more restricted set of permissions.
Neither of those is right or wrong globally: your particular situation will determine how much you weight each of them.
1. e.g. if you install the wrong Node module, it can still wreak havoc on your remote environment but it can't steal your local credentials, trojan your workstation, or attack your other projects — and by splitting your credentials from the remote environment's you can usually run with a far more restricted set of permissions.