• @worldsayshi
    link
    311 months ago

    I’m very wary of installing more extensions since I heard how many lucrative requests extension devs get from third parties for allowing them to enshittify their software.

    • Daniel F.
      link
      fedilink
      English
      1111 months ago

      It’s FOSS. You can verify that the code doesn’t make any malicious requests. The only requests it should make are to GitHub/Codeberg to update the list of instances.

      • @__matthew__
        link
        511 months ago

        Yeah, but that doesn’t prevent the author from selling their extension to an untrusted buyer like in the case of Nano Adblocker.

        • Daniel F.
          link
          fedilink
          English
          111 months ago

          Wow, didn’t think something like that had happened. That is a valid concern. However, it could be mitigated by disabling auto update and subscribing to the GitHub releases via RSS. Then you can either manually check for malicious commits, or if the extension is more popular, wait a bit for any bad news to come out about the update. Obviously, this isn’t possible for everyone and every extension, so I can understand why people would be cautious of more extensions, but I think Libredirect is a big enough extension that you would hear about it, like the case with Nano Adblocker.