I have long since stopped using any extension that doesn’t belong to an actual c... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Gigachad on March 15, 2025 \| parent \| context \| favorite \| on: Tj-actions/changed-files GitHub Action Compromised... I have long since stopped using any extension that doesn’t belong to an actual company (password managers for example). Even if they aren’t malware when you installed them, they will be after they get sold.

stockhorn on March 15, 2025 | [–]

A bit off topic, but how is the bitwarden browser extension protected against supply-chain attacks (npm dependencies)?

fluidcruft on March 15, 2025 | [–]

Actual companies also get sold and churned into shit. See LastPass for example.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact