Adriani90
Adriani90
Re permissions, I formulated so that users should read the description of the add-on carefully, some add-on authors who are taking security very seriously will also add notes about permissions...
There were add-ons in the past creating a custom add-on store with an own server infrastructure such as the one created by @yplassiard in the french community. I am pretty...
Could you elaborate on my comment above re permissions? I still think it makes sense to use this term.Von meinem iPhone gesendetAm 17.03.2024 um 14:48 schrieb Cyrille Bougot ***@***.***>: @CyrilleB79...
thanks both of you for the valuable feedback here. @CyrilleB79 I rewrote some part of the note to make clear the difference between checks and review. This PR is blocked...
@CyrilleB79 wrote: > I feel this PR is not very clear. We have begun to comment your work in detail (myself included). But in fact, it seems to me that...
Maybe one concrete example for a malitious add-on we could luckily detect is this one. Actually we should have added such a note into the user guide already at that...
The PR on the data store related to codeQL has been merged, but I think https://github.com/nvaccess/addon-datastore/pull/3294 will also be a nice add and I would update the note accordingly also...
It seems it has been decided to not implement virus total checks because this would result in too many false positives being detected. @seanbudd, @Qchristensen is the blocked label now...
cc: @mltony this will affect lot of people who are not using UIA for MS Office, so a fix for object model is needed as well.