vscodium [v1.99.02289] connects raw.githubusercontent.com even though i've disabled announcements

First i have to appreciate what you've done. it's just awesome. many thanks

Automatic startup connections to raw.githubusercontent.com have started to happen since the last update [v1.99.02289]. I have pretty much disabled announcements or any preference that would trigger a connection

it's also worth mentioning vscodium still connects to these two on every startup as others have already mentioned before (2070):

redirector.gvt1.com
r5---sn-vh5ouxa-hjud.gvt1.com

Regards

Apr 05 '25 12:04 dagithubun

raw.githubusercontent.com is used for:

the announcements (load https://github.com/VSCodium/vscodium/blob/master/announcements-extra.json)
the update checks (load file in https://github.com/VSCodium/versions).

gvt1.com is in Electron/Chromium due the builtin dictionary service. I will take a look at https://github.com/electron/electron/issues/22995

Apr 05 '25 13:04 daiyam

raw.githubusercontent.com is used for:

* the announcements (load https://github.com/VSCodium/vscodium/blob/master/announcements-extra.json)

* the update checks (load file in https://github.com/VSCodium/versions).

Thanks. Sorry but what are the preferences in order to disable them?

Apr 06 '25 15:04 dagithubun

"update.mode": "manual", or "update.mode": "none",

Apr 06 '25 17:04 daiyam

"update.mode": "manual", or "update.mode": "none",

it pings raw.githubusercontent.com on either "manual" or "none"

Apr 07 '25 14:04 dagithubun

I am also encountering this bug after updating from 1.98 to 1.99:

Images

I've created a block rule for now, but it's not an ideal solution.

Apr 17 '25 21:04 Charsy89

Yep, there is an extra connection. It's for "controlUrl": "https://raw.githubusercontent.com/EclipseFdn/publish-extensions/refs/heads/master/extension-control/extensions.json" (in the product.json, #2278). It's OpenVSX's control list.

I will have to look on how to disable it.

Apr 17 '25 22:04 daiyam

"update.mode": "manual", still downloads the latest.json file....

Apr 18 '25 09:04 daiyam

"update.mode": "manual", still downloads the latest.json file....

It's only on macOS and easy to fix.

controlUrl is cached as soon as there are any extensions. It's a list of malicious and deprecated extensions. Do you want me to add a new setting to block it?

Apr 18 '25 14:04 daiyam

Do you want me to add a new setting to block it?

That would be great.

It's a list of malicious and deprecated extensions.

You could mention that in the setting description - maybe some users will want to keep it enabled if that's the case.

Apr 18 '25 17:04 Charsy89

Can you try the latest version of the Insiders version (https://github.com/VSCodium/vscodium-insiders)?

The new property is extensions.excludeUnsafes. The workbench.welcomePage.extraAnnouncements property is now listed under @tag:usesOnlineServices.

Apr 20 '25 23:04 daiyam

I tested the 1.100.02674-insider version.

workbench.welcomePage.extraAnnouncements now appears when searching @tag:usesOnlineServices, and when the extensions.excludeUnsafes option is disabled, Codium no longer contacts any server upon startup, except for the redirector.gvt1.com thing, which is outside of the scope of this project.

Thank you for your work on this issue, and this alternative as a whole!

Apr 22 '25 02:04 Charsy89

I've integrated the fix in the latest Stable version.

Apr 22 '25 17:04 daiyam

I've integrated the fix in the latest Stable version.

i've also tested the latest stable version and can confirm the issue is resolved now. you can close the thread if you want to.

many thanks. regards

Apr 23 '25 06:04 dagithubun

just one question though: did you have an inspection on redirector.gvt1.com?

Apr 23 '25 06:04 dagithubun

redirector.gvt1.com is from chromium, allegedly for its spellchecker.

Apr 23 '25 09:04 daiyam