So, now any fool can create an add-on and send an easy install link. Yeah, good one.
Are they deliberately trying to open Firefox up to more malware?
Mozilla Labs has launched a new version of its Firefox web extensions package just a few days after Google opened up support for extensions in its Chrome browser. The open source outfit has dubbed Mozilla’s Jetpack 0.5 “the bootstrap edition”. It comes loaded with more features, API and an updated Twitter library for …
I don't see how this really makes the extension attack-surface any larger. It's always been possible to do all sorts of malicious things if you can get a user to install your extension; this just means you can have the various APIs provided by Jetpack to play your naughty games with too (any of which you could have coded into your extension earlier, if you had a mind to do so).
That's why addons.mozilla.org exists: it provides a trusted source of extensions. It has always been the case that you install extensions from elsewhere at your own peril. Relax and have a pint, things won't seem so bad!
Biting the hand that feeds IT © 1998–2020