Rob Wu
When I type in the terminal after exiting from `web-ext run`, the input is not displayed. When I press enter, the typed command is executed. This is a bug that...
Firefox is currently working on the ability to allow users to remove sideloaded extensions: https://blog.mozilla.org/addons/2019/10/31/firefox-to-discontinue-sideloaded-extensions/ This may affect the usability of the `--pre-install` flag. This feature is currently documented (in...
Someone reported that the UA switching functionality does not work for URLs opened via the command-line at https://bugzilla.mozilla.org/show_bug.cgi?id=1725842. Firefox does support interception and modification of URLs (and suspends network requests...
The logic that checks whether the manifest CSP is permitted is not sufficiently precise. The check relies on the following regexp and `.search`: https://github.com/mozilla/addons-linter/blob/ba3b667a13bde65250bcb1ebd814c9d57ccfa80d/src/const.js#L203-L210 https://github.com/mozilla/addons-linter/blob/12b64da87e223f042f7f5fd2ab2a6832435243f1/src/parsers/manifestjson.js#L1051 The regexp has `(?!.)`, with...
The extension currently requests the "Access your data for all websites" permission. While the initial implementation required that, the latest version (from #11) does not. We should check if Firefox...
`"*http` should be replaced with `"http` at https://github.com/wisniewskit/google-search-fixer/blob/108b2781d5f339e6d2b4a242745e48b149db589c/manifest.json#L34-L37 Because `include_globs` is evaluated after the specific patterns in `matches` is applied, this doesn't inadvertently result in incorrect matches, but still it...
In #3007 the issue was raised that the linter doesn't recognize `script-src-elem` and `script-src-attr`. In #4452 this was fixed by re-using the existing validation logic of `script-src`. The `script-src` validation...
Moved from https://bugzilla.mozilla.org/show_bug.cgi?id=1593316 In https://bugzilla.mozilla.org/show_bug.cgi?id=1793925, we introduce validation of the version format to the schema, but only warn. We should enforce the format in the linter, by not warning but...
news.google.com uses a different form of encoding. Example: https://news.google.com/articles/CBMihQFodHRwczovL3d3dy50LW9ubGluZS5kZS9uYWNocmljaHRlbi91a3JhaW5lL2lkXzEwMDMxMDYxNi91a3JhaW5lLWtyaWVnLXJ1c3NsYW5kLXdlbGNoZXMtemllbC12ZXJmb2xndC1wdXRpbi1taXQtZGVtLWx1ZnRhbmdyaWZmLS5odG1s0gEA?hl=de&gl=DE&ceid=DE%3Ade Base64 part: CBMihQFodHRwczovL3d3dy50LW9ubGluZS5kZS9uYWNocmljaHRlbi91a3JhaW5lL2lkXzEwMDMxMDYxNi91a3JhaW5lLWtyaWVnLXJ1c3NsYW5kLXdlbGNoZXMtemllbC12ZXJmb2xndC1wdXRpbi1taXQtZGVtLWx1ZnRhbmdyaWZmLS5odG1s0gEA Expected URL: https://www.t-online.de/nachrichten/ukraine/id_100310616/ukraine-krieg-russland-welches-ziel-verfolgt-putin-mit-dem-luftangriff-.html
crxviewer currently relies on `navigator.userAgent` to extract the version number to forward to the crx download endpoint: https://github.com/Rob--W/crxviewer/blob/e7ccd4f49d550e189e0d5a444790fffdc0065dc4/src/cws_pattern.js#L143-L153 As of today, the logic there is still relevant: The update server...