How can I add extension to browser from ExtJs application?

Chrome vs. Firefox Extension Security

Please help me understand the difference (or non-difference) in safety for Firefox vs. Chrome browser extensions (plugins/add-ons). I'm about ready to move to Chrome for various reasons, but when I go to install (on Chrome) Chrome's versions of some of the extensions I was using on Firefox, some of the extensions give me a warning message about various types of personal data the extension would expose to the extension developer. A friend suggested that Firefox extensions do the same thing, but that Firefox isn't as good at warning you about it. I've read some explanations of the Chrome warnings already--http://productforums.google.com/forum/#!topic/chrome/Gnlg4W7HYv4 includes a good explanation of the Chrome side of things--but I'm really wondering about how Chrome's security in terms of extension data sharing differs from Firefox (or any other browser). I'd feel better sharing data with trusted plugin developers if I know that this data sharing is necessarily occurring in every browser and isn't just a flaw of the Chrome set-up. Thank you!
Answer:

Your friend is correct. All Firefox extensions have full access to all pages that you access. Chrome has more granular settings and notification for what extensions may access, e.g., they may choose to limit themselves to certain domains. This is (mostly) not a huge issue because most extensions for both Firefox and Chrome are written in Javascript, so their code can audited relatively easily. Bad extensions (mainly those that insert ads into pages) do sometimes creep in, however.

pavane at Ask.Metafilter.Com Visit the source

Was this solution helpful to you?

Other answers

http://iwtf.net/2011/05/10/ant-video-downloader-firefox-addon-tracking-my-browsing/ of a Firefox extension that silently logged all sites visited and sent them to the extension maker, in order http://www.ant.com/note_about_privacy for their search engine. Apparently after this behavior was discovered, they included the ability to disable it. So there is no difference between the two if you tell a Chrome extension that it can access all data on all pages. And in order for many, if not most useful extensions to work, they do need that level of access. The only "flaw" in the Chrome set-up is that they actually tell you the potential data access level an extension is asking for.

zsazsa

Great, that is exactly what I wanted to know. Thank you both for your answers! Chrome ahoy!

pavane

Related Q & A:

How to Login to Stackoverflow in Chrome with a different Google ID than the one I'm using for Chrome?Best solution by Meta Stack Overflow
how to open a link in new tab in chrome extension?Best solution by Stack Overflow
Is it possible to send message to Chrome Extension from Java Desktop Application?Best solution by Stack Overflow
How will my Google Chrome/Firefox be able to read Korean?Best solution by answers.yahoo.com
Is Firefox 4 the last version of Firefox?

Just Added Q & A:

How many active mobile subscribers are there in China?Best solution by Quora
How to find the right vacation?Best solution by bookit.com
How To Make Your Own Primer?Best solution by thekrazycouponlady.com
How do you get the domain & range?Best solution by ChaCha
How do you open pop up blockers?Best solution by Yahoo! Answers

For every problem there is a solution! Proved by Solucija.

Got an issue and looking for advice?
Ask Solucija to search every corner of the Web for help.
Get workable solutions and helpful tips in a moment.

Just ask Solucija about an issue you face and immediately get a list of ready solutions, answers and tips from other Internet users. We always provide the most suitable and complete answer to your question at the top, along with a few good alternatives below.