Hi, I've been playing about with the extension framework - really is a joy to use.
However I have a slight concern about the threat model. It's fairly trivial to write an extension to log all form data (from both http and https sites) and send it off to a foreign host, given content script and Cross-Origin XHR permissions. The threat model assumes that such an extension will get bad reviews, so not affect many users, but does it factor in the autoupdate mechanism? As a nefarious developer, I could create a perfectly innocent and useful extension (with content script and Cross-Origin XHR permissions), and wait until a large number of users have installed it. Then I release a new version, automatically pushed out to existing users, that introduces form logging. Whilst it may only take a day or so for someone to notice and the extension killed, large numbers of users will have their details (usernames, passwords, credit card numbers) stolen. Any thoughts? Laurence -- You received this message because you are subscribed to the Google Groups "Chromium-extensions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/chromium-extensions?hl=en.
