warrenday
commented
2 years ago We actually don't ask for any permissions so I have no idea why this message is now appearing. I'll need to talk to chrome support and update.
Closed repomaa closed 2 years ago
warrenday
commented
2 years ago We actually don't ask for any permissions so I have no idea why this message is now appearing. I'll need to talk to chrome support and update.
warrenday
commented
2 years ago Support got back and said although we do not request any permissions, the "access to data of all websites" message appears as the app does have access to network requests.
Looking at react devtools the same message also now appears "read and change all your data on all websites". I think unfortunately this is always going to be the case with these kinds of developer tools.
Hopefully given the fact this extension is open source you can have a better oversite of what you are installing.
vitaliydolbilov
commented
1 year ago Hi @warrenday, I'm following up this as our company requires us to whitelist certain extensions only to certain sites. The example of React dev tools does have the option to set site access to specific sites via a dropdown. This extension does not have that setting -
warrenday
commented
1 year ago Thanks for following up. Seems like this would be a common need for larger companies.
I'll take a look at adding something to the manifest to allow this.
The chrome extension permission for access to data of all websites sounds a bit scary so why not enable the chrome extension feature for setting up specific sites the extension can be active on or on click. It looks like react dev tools does this.