Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Critical security issue still exists for FF4 #28
Well, I would not say that you should not upgrade to FF4 just because of this plugin. But you should be aware of that fact that pages could read the content of your notes.
Honestly I think it is an unlikely scenario, but it is a potential thread. Just don't put any sensitive information in the notes.
I will figure out a way how to make it work...
Ah :) The plugin works exactly as before. The only difference is that now in Firefox 3.6, webpages cannot access the contents anymore. But this security measure has no effect in Firefox 4.
So you can "safely" upgrade. I still hope that the reason why it does not work is a bug in Firefox 4. If not... I actually have no idea what I can do else to protect "in-page" notes...
:) Thank you for your offer! There is always something to do. Unfortunately, my code is not very well documented (actually it is not at all ;))
Anyway, regarding this issue, I wrote to the security mailing list and it seems to be a bug in FF4. I filed a bug report, so lets see what will happen.