Topic: All XUL Addons to be purged - your help needed

Hello Everyone,
A few days ago Mozilla announced they will be purging all XUL addons from the AMO website by October. As we depend on legacy addons, we ask for your help.

How you can help:

1) Any addon you use currently, back it up. If possible, backup all versions. You may use the DownThemAll extension to do this. Click on "See All Versions" from an addon's web page and you will be able to see them all.

2) Open a bug report requesting the addon and attach the last working version to your bug report.

There are people working to preserve these addons using an automated solution, but we would like to make sure everyone was given a fair warning should any of your favorite addons be missed.

Thank you!

Re: All XUL Addons to be purged - your help needed

This might fit your needs. It is an add-on with the full website of Mozilla add-ons without the xpi files (and the user comments it seems). The xpi files will be added very soon apparently (at the moment they still  point to the original links but they will point in the future to another website).

https://github.com/JustOff/ca-archive/issues/8
https://github.com/JustOff/ca-archive/releases

Re: All XUL Addons to be purged - your help needed

g4jc wrote:

Hello Everyone,
A few days ago Mozilla announced they will be purging all XUL addons from the AMO website by October. As we depend on legacy addons, we ask for your help.

How you can help:

1) Any addon you use currently, back it up. If possible, backup all versions. You may use the DownThemAll extension to do this. Click on "See All Versions" from an addon's web page and you will be able to see them all.

2) Open a bug report requesting the addon and attach the last working version to your bug report.

There are people working to preserve these addons using an automated solution, but we would like to make sure everyone was given a fair warning should any of your favorite addons be missed.

Thank you!

All right!

Backup of wappalyzer → https://addons.mozilla.org/firefox/down … .11-fx.xpi

Re: All XUL Addons to be purged - your help needed

aloniv wrote:

This might fit your needs. It is an add-on with the full website of Mozilla add-ons without the xpi files (and the user comments it seems). The xpi files will be added very soon apparently (at the moment they still  point to the original links but they will point in the future to another website).

https://github.com/JustOff/ca-archive/issues/8
https://github.com/JustOff/ca-archive/releases

Thank you! I actually just discovered this today and will be monitoring to see how it progresses. It will be good to have an archive of existing addons so that they can be updated and ported as time permits. I'm glad to hear they saved so many of them and cataloged them. I have my own saved collection but it is no where near as complete.

5 (edited by aloniv 2018-09-01 07:36:29)

Re: All XUL Addons to be purged - your help needed

The legacy add-ons will be integrated into Waterfox (the main developer has backed up the add-ons) and the Classic add-ons Archive add-on will possibly use Waterfox's add-on mirror:

https://www.reddit.com/r/waterfox/comme … n/e4lomm0/

Re: All XUL Addons to be purged - your help needed

At some point in the (near) future, it would be great to have a website featuring all those extensions. From what I read on github ticket, this could happen !
Meanwhile, I backed up the ones I use.

7 (edited by zapper 2018-09-04 00:54:05)

Re: All XUL Addons to be purged - your help needed

It's good you backed up legacy addons, I myself backed up the ones I use.

Just so you know, Noscript support is probably going to be dropped very soon. 

Actually scratch that you probably are well aware of this.

But yeah, Thank you.

Hyperbola:

The Stable Secure Libre Arch!

8 (edited by freemedia 2018-10-08 21:26:24)

Re: All XUL Addons to be purged - your help needed

how will noscripts functionality be accomplished if its not supported?

im aware that you could build that (per site) functionality into the browser (otherwise about:config suffices) and i think the story of the extension is that the author wanted it in the browser.

but im just now hearing about this browser, so im concerned about the drop of noscript support. i stopped using pale moon just for disabling it while it was running.

edit: (its blacklisted as uses non-free)

what non-free? of course i will look into the larger theme of this thread too, this is all new to me.

"Just so you know, Noscript support is probably going to be dropped very soon."

now i understand-- its going to be dropped by mozilla.

perhaps we should be keeping a list of things that have hurt free software and could be strategic? i get that sometimes frameworks are dumped. so saying "mozilla did this to hurt free software" is probably far from the truth. i would put it on the list though, as "probably not." ill go make the topic so we dont have to move farther off topic here.

Re: All XUL Addons to be purged - your help needed

freemedia wrote:

how will noscripts functionality be accomplished if its not supported?

im aware that you could build that (per site) functionality into the browser (otherwise about:config suffices) and i think the story of the extension is that the author wanted it in the browser.

but im just now hearing about this browser, so im concerned about the drop of noscript support. i stopped using pale moon just for disabling it while it was running.

edit: (its blacklisted as uses non-free)

what non-free? of course i will look into the larger theme of this thread too, this is all new to me.

"Just so you know, Noscript support is probably going to be dropped very soon."

now i understand-- its going to be dropped by mozilla.

perhaps we should be keeping a list of things that have hurt free software and could be strategic? i get that sometimes frameworks are dumped. so saying "mozilla did this to hurt free software" is probably far from the truth. i would put it on the list though, as "probably not." ill go make the topic so we dont have to move farther off topic here.


When I said noscript was probably going to be dropped soon, it was before this:

https://noscript.net/getit

https://secure.informaction.com/downloa … -5.1.9.xpi

So yeah, no problems here after all.  I was thinking Hyperbola was going to continue development on their own, but this is so much better!

Hyperbola:

The Stable Secure Libre Arch!

Re: All XUL Addons to be purged - your help needed

oh, thank you. my first two questions about a browser are:

"can you turn javascript on and off?"

and: "per site?" im also a fan of librejs, though i generally recommend people turn it off.

you have to understand, i was hoping theyd actually implement that thing for years, and now its actually usable (you can run it) though it seems to introduce problems even on sites that even have jumped through the hoops-- even beyond just licensing their js as libre-- to get everything working.

using per-site js support, it is possible to enable js only on sites that have free js. librejs does this automatically but still breaks stuff, and noscript only does this manually (and breaks stuff a lot less!)

as far as i know, librejs defaults to trusting any site with freely-licensed js, be it malicious or clean, as long as it is freely licensed. please let me know if this is not so.

because if not, librejs could at least potentially be used as a noscript replacement. i do not believe this was ever the goal, but if i were in charge of librejs development, you could potentially use it for security as well as freedom. its worth noting that noscript also handles xss attacks, and that is almost certainly not a feature of librejs. nor does it need to be, as long as we can run both.

Re: All XUL Addons to be purged - your help needed

freemedia wrote:

oh, thank you. my first two questions about a browser are:

"can you turn javascript on and off?"

and: "per site?" im also a fan of librejs, though i generally recommend people turn it off.

you have to understand, i was hoping theyd actually implement that thing for years, and now its actually usable (you can run it) though it seems to introduce problems even on sites that even have jumped through the hoops-- even beyond just licensing their js as libre-- to get everything working.

using per-site js support, it is possible to enable js only on sites that have free js. librejs does this automatically but still breaks stuff, and noscript only does this manually (and breaks stuff a lot less!)

as far as i know, librejs defaults to trusting any site with freely-licensed js, be it malicious or clean, as long as it is freely licensed. please let me know if this is not so.

because if not, librejs could at least potentially be used as a noscript replacement. i do not believe this was ever the goal, but if i were in charge of librejs development, you could potentially use it for security as well as freedom. its worth noting that noscript also handles xss attacks, and that is almost certainly not a feature of librejs. nor does it need to be, as long as we can run both.


I prefer noscript to librejs. I wouldn't be surprised if even freejs can be hacked into.  Even if it isn't that way by default. 

I am very suspicious of javascript in general to be honest.

Hyperbola:

The Stable Secure Libre Arch!

12 (edited by freemedia 2018-10-09 02:33:46)

Re: All XUL Addons to be purged - your help needed

the two exist for entirely different purposes. unless im mistaken about the details:

1. by default, noscript runs all the js you enable, whether its freely licensed or not.

2. by default, librejs runs all the js that is freely licensed, whether its individually enabled or not.

so noscript runs js per-site and librejs runs js per-license.

but as i pointed out to someone higher up in the software freedom hierarchy than most (though lower than rms,) this does not make librejs a security tool. anyone can freely license malicious js and (i believe) librejs will run it. you can request it be fixed, but by then you have already run the malicious code (which could be on that site deliberately, or without the knowledge of the server admin.)

i must repeat i dont expect librejs to work differently than this. but it does require you to have two extensions fielding the js on each site-- unless the functionality is built-in to the browser.

most extensions are browser-specific, and if mozilla cared more about security than absurd strawman arguments about usability:

http://limi.net/checkboxes-that-kill/

https://support.mozilla.org/en-US/questions/968821 "as for add-ons why disable something that you have to re-enable with a work-a-round sounds dumb"

yaaa! i lost a boatload of respect for mozilla in 2013, and it has never gotten it back again.

if not for nonsense like this, noscript wouldnt even be an extension-- it would be a browser feature.

no one should be surfing with global js on by default-- both because of security and also because of freedom.

the only thing alex limi cared about was convenience. i care about that too-- but not to the exclusion of all other issues.

also, im not saying that its necessarily better to have as a browser feature. if its easier to develop and maintain as an extension, great. though it might be easier to maintain as a browser feature-- if you are already maintaining a full browser like mozilla does, and not just making tweaks to an existing one.

then again if youre mozilla, the only easy thing to do is make your browser suck more every year, and perhaps also produce stupid excuses why youre doing that.

i do have some genuine hope for the local flavour of iceweasel, though i dont expect a miracle.

(posted from a lousy mozilla web browser, because most web browsers are lousy)