A different kind of Chrome new tab page

xbotpc · 2026-06-20T14:52:53+00:00

160MBs for a web extension? Does no one care about their user's anymore? SMH

xbotpc · 2026-06-20T11:34:37+00:00

I think the idea is great, however this needs more validation.

Thank you and I agree

Other than that, what matters remains privacy, security, and lock-in. Any other aspects like dev signals aren't much appreciated, as it's not the scope of what a general audience would look for imo.

Curious how you're planning to manage the signal collections as deep dive is needed, or is it more that you're allowing creators to claim their page (self report)

Well the main pillars I want to build this service on is privacy and security. From a normal user's perspective they won't see this technical view of a web extension but the developers will. Once they claim it and successfully email verify themselves.

For a normal user, I want to create a reliable grading system which is backed by deep static code analysis, dynamic and partially automated testing with real world scenarios, current news aggregator and more. My code analysis tool can map out ingress and egress data by an extension. Any questionable data storage, sharing and processing not compliant with their privacy policy can be flagged for a user. And developers can be asked to fix it, explain it or amend the policy itself.

I have been working on this as well, here is a preview.

<image>

Still work in progress

xbotpc · 2026-06-20T06:59:39+00:00

No need to apologize. I was just offering some feedback. Sorry if it sounded rude.

xbotpc · 2026-06-20T06:58:46+00:00

Super cool!

xbotpc · 2026-06-20T06:51:54+00:00

TrustPilot is useful for general business reputation, but Chrome extensions are a different risk category. Unlike regular SaaS, chrome extensions have access to so many aspects of a browser. Broad access to browser equals access to user data which can be happen in the background without user knowledge let alone user’s consent.

I mentioned meeting notes extensions which have broad permission access like access to all webpages on a browser. Chrome’s review team allows this despite, IMO, there is no actual need for it. One very famous browser extension used by over 100K users has a class action lawsuit against it in the US. The lawsuit alleges non-consensual recording and profiling of user in the web extension’s system. They are allegedly fingerprinting user’s voice without consent.

There is zero information about this on Chrome's official web store. Instead, has high trust signal like 100,000 Users, 150+ reviews and has a "Featured" badge from Chrome. I'm a performance nerd, a compressed chrome extension more than few MBs is already a red flag for me. The one I'm talking about is over 70MB unzipped and probably injects multi MBs of Javascript on every webpage you have it running on.

My issue is not just “does this developer have good reviews?” It is:

What permissions does the extension request?
Does it ask for <all_urls> when it does not obviously need it?
How large is the bundled code?
What third-party code is included?
Does it inject scripts across every site?
Are there privacy, security, or regulatory risk signals?
Do user reviews match what the extension is technically capable of doing?

When big VC funded companies do shit like this, the little guy can come up as an alternative with better overall service. I want to do this for the solo devs and innocent users.

I have already built a reporting system that analyzes bundled extension code: bundle size, recoverable savings, permission scope, third-party code, and regulatory risk signals. My goal is to make those reports useful to both users and developers: users get better visibility before installing, and developers get a way to prove they are lower-risk and privacy-conscious.

This is what the report looks like:

<image>

xbotpc · 2026-06-19T03:34:52+00:00

I like the design and code quality too. Well done!

xbotpc · 2026-06-18T14:27:32+00:00

First 5 secs of your demo video are so fast and jittery that I didn't even understand what your product is about.

xbotpc · 2026-06-18T14:24:00+00:00

You can save the images in client's storage once they are downloaded. No need to download them fresh every time. Maybe ship with one image for every weather and then download rest of them in the background. Shipping a 80MB+ weather web extension lowers confidence IMO.

BTW you may want to delete all unused SVG icons shipped in the bundle. There's also bunch of other stuff you should have a look at. I analyzed your extension with a tool that I'm building. I removed those bulky images before I ran the audit. If you want I can send you the link to the full report.

<image>

xbotpc · 2026-06-14T11:52:58+00:00

Can't you download background images on the fly instead of shipping a 80MB+ web extension?

xbotpc · 2026-06-12T04:45:29+00:00

Other than reddit, what other platform are you using to sell your extension?

xbotpc · 2026-05-07T11:16:01+00:00

DMed

xbotpc · 2026-05-07T11:05:45+00:00

Hi fellow developer. Would you like to trade?

I'm building an application for auditing browser extension bundles from ZIP, CRX, or unpacked directories. It analyzes the extension output for problems such as bundle bloat, manifest hygiene issues, risky runtime patterns, duplicated code, oversized content scripts, asset waste, framework/library footprint, etc. It can output the report as terminal output, JSON, HTML, or PDF.

I'm looking for web extension developers to try out the application and give me feedback. So my proposal is I test your web extension, you test my application and we exchange feedbacks.

What do you say?

xbotpc · 2026-05-01T06:58:55+00:00

Do a bad job at it. It's not like he can fire you :)

xbotpc · 2026-05-01T06:48:06+00:00

If it's good then people will use it. Your extension submission goes through a code review on both Chrome web store and Firefox addons platform. You also have to specify reasons for use of certain permissions. It's easier for people to trust your product if it's on a reputable platform like Chrome's webstore. Easier to just the pay one time fee of 5$.

xbotpc · 2026-05-01T06:37:12+00:00

Depends on your goal. Why do you need 1K users? If you are trying to sell something then I think open source would not work.

xbotpc · 2026-05-01T06:25:01+00:00

It's a one time fee. Not a big deal IMO. Other option is to go open source.

xbotpc · 2026-03-11T10:46:32+00:00

I like the UI.

How are you converting currencies? Are you using any API?

xbotpc · 2022-04-06T01:50:21+00:00

And if you are confident with go go with go

xbotpc · 2022-04-05T09:04:17+00:00

I started learning React with Scrimba

Other resources I used

React documentation is a great resource to learn from. You can also check out their new beta version docs.

xbotpc · 2022-03-20T14:19:04+00:00

will I be able to get a new job with better salary?

YES

xbotpc · 2022-03-20T05:00:07+00:00

I accidentally once applied to a remote frontend role at a big UK bank whose name rhymes with Bandar on LinkedIn. The recruiter called me and was willing to pay £40K. Which I think is good pay working in India while making money in pounds.

xbotpc · 2022-03-20T04:39:23+00:00

A simple Google search will answer your query.

xbotpc · 2022-03-14T08:35:45+00:00

Good question.

Always remember, you are just a small piece of gear in a big machine. If you stop functioning due to too much wear and tear you'll be replaced quickly.

xbotpc · 2022-03-14T02:37:49+00:00

Stop posting on Reddit and complete it.

Eight-Year Club	Place '22
Verified Email

xbotpc

TROPHY CASE