附加元件
chris
關於我
| 名稱 | chris |
|---|---|
| 加入日期 | March 15, 2026 |
| 參與開發的附加元件數量 | 0 個附加元件 |
| 此開發者的附加元件平均分數 | 未經評分 |
我所發表的評論
oneClipper - send mail to one Note
評分: 3 / 5 顆星
I appreciate the work behind oneClipper and wanted to share a constructive security observation from reviewing the source code.
The add-on appears to rely on an external token server for Microsoft OAuth token handling, so users may need to place significant trust in that service. If that server were ever compromised or mismanaged, connected OneNote access could potentially be exposed.
It may be helpful to clarify this external dependency on the add-on page so users can better understand the trust model. I’m sharing this as a constructive suggestion for transparency, not as an accusation.
oneClipper - send mail to one Note
評分: 3 / 5 顆星
I appreciate the work behind oneClipper and wanted to share a constructive security observation from reviewing the source code.
The add-on appears to rely on an external token server for Microsoft OAuth token handling, so users may need to place significant trust in that service. If that server were ever compromised or mismanaged, connected OneNote access could potentially be exposed.
It may be helpful to clarify this external dependency on the add-on page so users can better understand the trust model. I’m sharing this as a constructive suggestion for transparency, not as an accusation.
如果您要新增自己的收藏集,你必須先申請一個 Mozilla 附加元件的帳號。
