Just yesterday there was a thread about how the chrome plugin "user agent switch... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

lathiat on Aug 2, 2017 | parent | context | favorite | on: Malicious crossenv package on npm

Just yesterday there was a thread about how the chrome plugin "user agent switcher" sends your entire browsing history externally. And it's still published.

The problem is not unique to the npm ecosystem, the main problem here is "web of trust" whether through GPG or even just things like 'download counts', etc.

tim333 on Aug 2, 2017 [–]

Also there are at least three chrome extensions in the store called "user agent switcher" which confuses matters. From useragentswitcher.org, google.com and toolshack.com

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact