I could not find any existing issues requesting this functionality
To decrease the risk of malicious extensions (like the recent GlassWorm attack), it would be great to have a setting that enforces a minimum extension age.
Package managers like pnpm introduced this same functionality recently: pnpm/pnpm#9921
With this setting:
- extensions need to be at least x days old before they appear in the extensions.
- automatic updates of extensions happen only x days after they are released.
This way, there is a longer time in which malicious extensions can be detected before the become widespread.
This setting should probably be set to a couple of days by default.
I could not find any existing issues requesting this functionality
To decrease the risk of malicious extensions (like the recent GlassWorm attack), it would be great to have a setting that enforces a minimum extension age.
Package managers like pnpm introduced this same functionality recently: pnpm/pnpm#9921
With this setting:
This way, there is a longer time in which malicious extensions can be detected before the become widespread.
This setting should probably be set to a couple of days by default.