Mozilla to Require Data-Collection Disclosure in All New Firefox Extensions (linuxiac.com) 17
"Mozilla is introducing a new privacy framework for Firefox extensions that will require developers to disclose whether their add-ons collect or transmit user data..." reports the blog Linuxiac:
The policy takes effect on November 3, 2025, and applies to all new Firefox extensions submitted to addons.mozilla.org. According to Mozilla's announcement, extension developers must now include a new key in their manifest.json files. This key specifies whether an extension gathers any personal data. Even extensions that collect nothing must explicitly state "none" in this field to confirm that no data is being collected or shared.
This information will be visible to users at multiple points: during the installation prompt, on the extension's listing page on addons.mozilla.org, and in the Permissions and Data section of Firefox's about:addons page. In practice, this means users will be able to see at a glance whether a new extension collects any data before they install it.
This information will be visible to users at multiple points: during the installation prompt, on the extension's listing page on addons.mozilla.org, and in the Permissions and Data section of Firefox's about:addons page. In practice, this means users will be able to see at a glance whether a new extension collects any data before they install it.
The Telemetry Wars (Score:2, Offtopic)
I can kinda see the next move on the chess board here. Microsoft blocking Firefox installs. For “security” reasons of course.
Hope Mozilla understands their dependencies..
Re: (Score:2)
It's just extensions. M$ doesn't have any skin in this.
Re: (Score:2)
This is critical because as the internet fills up with slop AI is going to start oribosing itself by consuming its own slop. So
Re: (Score:3)
Re: (Score:2)
Re: (Score:2)
I was looking at a few of the entries in that list and did not notice any which had been updated after 2021.
Browsers change over time and that list is too static.
Disclosure alone is not enough (Score:3)
Someone's got to verify the extension. Otherwise, they can do what they want.
Re:Disclosure alone is not enough (Score:5, Insightful)
Someone's got to verify the extension. Otherwise, they can do what they want.
Really, there should be protected actions and when an extension asks to do them we should need to approve them.
"This extension is trying to modify the layout of the interface. Allow/Deny?"
"This extension is trying to make a connection to an outside server. Allow/Deny?"
"This extension is trying to access local files outside its temp files. Allow/Deny?"
"This extension is trying to modify the payload of the website you are visiting. Allow/Deny?" "This extension is trying to read the websites you visit. Allow/Deny."
Shouldn't be hard to come up with a short list of key actions. And yeah, something like uBlock is going to be doing a lot of things. Those... we have to trust.
Re: (Score:3)
Likewise, I'd like Firefox to have those same requirements for their own browser.
Allow Google to snoop on your behaviour? Yes/No.
Re: (Score:2)
>"Really, there should be protected actions and when an extension asks to do them we should need to approve them."
+1, I would like to see that
How can I check my extensions ? (Score:2)
firefox copying chrome again? (Score:1)
chrome already does this, right?
They could make this really easy (Score:2)
Just automatically add text to every extension listing saying that:
"This extension can record and report data about everything you do on the web, including every website you navigate to, and every website in your browser history. If you don't trust this extension with all of your personal information, you might want to reconsider enabling it."