(github.com)

95 points thunderbong | 1 comments | 22 Oct 24 04:23 UTC | HN request time: 0.205s | source

Show context

MaxGripe[dead post] ◴[22 Oct 24 07:33 UTC] No.41912044[source]▶

>>41911176 (OP) #

[flagged]

maqp ◴[22 Oct 24 07:38 UTC] No.41912065[source]▶

>>41912044 #

NO ONE should trust a website delivering JS that could do who-knows what the next time they skip reading the code. Like, send the inputs to a third party.

Please delete this project and your comment.

If you want to be helpful, write native code that user can read, compile, and install, and persistently use without risk of backdoor-out-of-the blue.

replies(4): >>41912177 #>>41912233 #>>41912718 #>>41913148 #

DatenF ◴[22 Oct 24 08:09 UTC] No.41912233[source]▶

>>41912065 #

It's hosted on GitHub Pages so you don't need to check if the code has changed. Just look for any commits. From what I can see, the last one was three months ago

replies(2): >>41912486 #>>41912506 #

1. 0points ◴[22 Oct 24 09:08 UTC] No.41912506[source]▶

>>41912233 #

I forge git commits now and then so I know this but maybe it is not common knowledge. Git commits can be forged.

Content and dates can be changed.

↑

Firefox-Passwords-Decryptor: Extracts and decrypts passwords saved in Firefox