Mozilla recently removed every version of uBlock Origin Lite from their add-on store except for the oldest version.
Mozilla says a manual review flagged these issues:
Consent, specifically Nonexistent: For add-ons that collect or transmit user data, the user must be informed…
Your add-on contains minified, concatenated or otherwise machine-generated code. You need to provide the original sources…
uBlock Origin’s developer gorhill refutes this with linked evidence.
Contrary to what these emails suggest, the source code files highlighted in the email:
- Have nothing to do with data collection, there is no such thing anywhere in uBOL
- There is no minified code in uBOL, and certainly none in the supposed faulty files
Even for people who did not prefer this add-on, the removal could have a chilling effect on uBlock Origin itself.
Incidentally, all the files reported as having issues are exactly the same files being used in uBO for years, and have been used in uBOL as well for over a year with no modification. Given this, it’s worrisome what could happen to uBO in the future.
And gorhill notes uBO Lite had a purpose on Firefox, especially on mobile devices:
[T]here were people who preferred the Lite approach of uBOL, which was designed from the ground up to be an efficient suspendable extension, thus a good match for Firefox for Android.
New releases of uBO Lite do not have a Firefox extension; the last version of this coincides with gorhill’s message. The Firefox addon page for uBO Lite is also gone.
Brave is also Chromium-based, so switching to that does nothing to promote a web without a Google engine monopoly. Of the three serious engine developers, Google (Chromium), Apple (WebKit), and Mozilla (Gecko), Mozilla is still the least worst option (and that’s saying a lot as this story makes evident once again). FF alternatives like LibreWolf rely in Mozilla Firefox development because they don’t do engine development. I hope the Servo revival turns that into a serious contender.
That’s why I still use FF. I wish they were run by better people, but it’s still not on par with Google’s shit.
And they still offer useful features/services like email masks, cookie containers, and a VPN (which is rebranded Mullvad). If they were awful bad actors, they would be running their own exit nodes and surreptitiously collecting user data that way.