Session Boss 的评价
Session Boss 作者: William Wng
William Wng 的回应
开发者回应
发布于 6 年前I really take exception to this unfair review comment and its insinuation.
- First of all, I would encourage anyone not to use an extension if there's any doubt about it, including this one.
- Second, Mozilla has put in place a very rigorous review process to prevent malicious extensions. I went through it and it's no joke.
- Third, people underestimate how strong the new extension framework , the permission system, and the extension digital signing process Mozilla has put in place to prevent malicious attack since Firefox 57. I encourage you to look into the extension development process and see how things work.
- If people think some source code they review on Github would be the same as the extension installed on their machines, they're at best naive and at worst misleading others with a false sense of security. I really doubt their ability to do a proper security audit.
- All source code of all Firefox extensions are publicly available for review. And they are digitally signed to prevent tampering. If one has some basic knowledge about Firefox extension, one can start reviewing the code right the way.
- Github's purpose is for sharing source code and managing project development.
- I developed this extension mainly for my own use and thought others might find it useful so I shared it. I would care less about the rating. If you think a low rating would force me to put the source code on Github, you are sadly mistaken. I will never put the source code on it.
- In fact, the source used to have a GPL license. I've just changed it to closed source because of this review.
- First of all, I would encourage anyone not to use an extension if there's any doubt about it, including this one.
- Second, Mozilla has put in place a very rigorous review process to prevent malicious extensions. I went through it and it's no joke.
- Third, people underestimate how strong the new extension framework , the permission system, and the extension digital signing process Mozilla has put in place to prevent malicious attack since Firefox 57. I encourage you to look into the extension development process and see how things work.
- If people think some source code they review on Github would be the same as the extension installed on their machines, they're at best naive and at worst misleading others with a false sense of security. I really doubt their ability to do a proper security audit.
- All source code of all Firefox extensions are publicly available for review. And they are digitally signed to prevent tampering. If one has some basic knowledge about Firefox extension, one can start reviewing the code right the way.
- Github's purpose is for sharing source code and managing project development.
- I developed this extension mainly for my own use and thought others might find it useful so I shared it. I would care less about the rating. If you think a low rating would force me to put the source code on Github, you are sadly mistaken. I will never put the source code on it.
- In fact, the source used to have a GPL license. I've just changed it to closed source because of this review.