Reviews for MobiDevTools
MobiDevTools by Francesco De Stefano
Response by Francesco De Stefano
Developer response
posted 8 months agoThank you for your detailed question and for raising important points about extension permissions and security — I appreciate your vigilance.
Regarding the permission to access data on all websites, this is indeed a broad permission and I want to clarify why it is necessary for this add-on’s functionality:
1. Core Functionality Requires Full Page Access:
As a developer tool, the add-on needs to interact with the full DOM and resources on any visited page, including pages not currently active in the browser. This allows features such as the foldable and editable HTML source panel, resource inspection, and network monitoring to function fully and accurately — which cannot be reliably achieved with only activeTab or limited devtools APIs.
2. Why activeTab Is Insufficient:
The activeTab permission grants temporary access only to the currently active tab when the user explicitly activates the extension. However, this add-on supports monitoring and auditing even in inactive tabs to provide seamless inspection across multiple pages — a vital capability for developers and testers working across tabs or on background tasks.
3. No Reading or Storing Sensitive Data:
While permission technically enables reading page content, this add-on does not collect, store, or transmit any personal information or user credentials. All data manipulation is strictly local to the browser session and purely for your development convenience.
4. No Use of Password Manager Interfaces:
We do not interface with password management services or attempt to read or write credentials. The warning text is a generic browser notice for this permission scope, and does not indicate actual behavior by the add-on.
5. Security and Transparency:
The add-on’s source code is fully open and available for review — https://sourceforge.net/projects/mobidevtools/. You and the community are encouraged to audit it to confirm that it operates exactly as described — securely and respectfully.
Thank you again for your thoughtful feedback. Our goal is to provide a powerful developer experience while maintaining transparency and respecting user trust. If you have further questions or suggestions on how we can improve, we are always open to constructive dialogue.
P.S. If you intend to play the expert, please be aware that the extension’s complete source code is always publicly available for download and review. While you may wish to appear an authority, it’s important to understand that this project is a genuine contribution aimed at improving developer efficiency and enhancing the prestige of the Firefox browser. Mozilla’s foundation has rightly made user privacy protection the core principle of its mission—something we fully respect and uphold in this add-on.
Regarding the permission to access data on all websites, this is indeed a broad permission and I want to clarify why it is necessary for this add-on’s functionality:
1. Core Functionality Requires Full Page Access:
As a developer tool, the add-on needs to interact with the full DOM and resources on any visited page, including pages not currently active in the browser. This allows features such as the foldable and editable HTML source panel, resource inspection, and network monitoring to function fully and accurately — which cannot be reliably achieved with only activeTab or limited devtools APIs.
2. Why activeTab Is Insufficient:
The activeTab permission grants temporary access only to the currently active tab when the user explicitly activates the extension. However, this add-on supports monitoring and auditing even in inactive tabs to provide seamless inspection across multiple pages — a vital capability for developers and testers working across tabs or on background tasks.
3. No Reading or Storing Sensitive Data:
While permission technically enables reading page content, this add-on does not collect, store, or transmit any personal information or user credentials. All data manipulation is strictly local to the browser session and purely for your development convenience.
4. No Use of Password Manager Interfaces:
We do not interface with password management services or attempt to read or write credentials. The warning text is a generic browser notice for this permission scope, and does not indicate actual behavior by the add-on.
5. Security and Transparency:
The add-on’s source code is fully open and available for review — https://sourceforge.net/projects/mobidevtools/. You and the community are encouraged to audit it to confirm that it operates exactly as described — securely and respectfully.
Thank you again for your thoughtful feedback. Our goal is to provide a powerful developer experience while maintaining transparency and respecting user trust. If you have further questions or suggestions on how we can improve, we are always open to constructive dialogue.
P.S. If you intend to play the expert, please be aware that the extension’s complete source code is always publicly available for download and review. While you may wish to appear an authority, it’s important to understand that this project is a genuine contribution aimed at improving developer efficiency and enhancing the prestige of the Firefox browser. Mozilla’s foundation has rightly made user privacy protection the core principle of its mission—something we fully respect and uphold in this add-on.