Comment by hvb2
8 hours ago
Because of stuff like this? https://news.ycombinator.com/item?id=48207660
If you don't have the ability to police extensions you're basically putting your users up for sale?
8 hours ago
Because of stuff like this? https://news.ycombinator.com/item?id=48207660
If you don't have the ability to police extensions you're basically putting your users up for sale?
How is this an argument when you can use extensions on the desktop version?
But they support extensions on desktop.
The problem you linked to also happened on desktop because there is no VSCode for phones.
Your users don't have to use those extensions, so I don't understand how that's relevant? People who do, should be made aware of risks and that's it. This is not a good argument against taking away their option to have that customization.
I'm having a hard time finding a thread where people don't complain about npm when the real issue is packages being compromised.
Swap packages for extensions in the above and let me know how that's different
But what's your argument? That phone-based extensions are more vulnerable somehow than desktop extensions?
If anything, wouldn't a phone extension be more sandboxed than most desktop environments?
No, if that were true, there would be no extension support on non-mobile
They can add support for Chrome and Edge extensions marketplaces.