The "original" UBO is basically the mother of all supply chain vulnerabilities and whenever the inevitable exploit happens, everyone who thought they were a connoisseur of privacy is going to get completely pwned. UBO Lite works without being a gigantic security vuln.
Some people may think what you're saying is outlandish, but it's worth remembering that this is pretty much what already happened to Ublock (which led to the forking of Ublock Origin and return of gorehill)
Not saying it cannot happen, but in Firefox, it is a “Recommended“ extension which gets reviewed per release. A sophisticated attack could slip through, but a ham fisted takeover is unlikely.
It's also worth mentioning that Firefox doesn't force you to auto-update add-ons, but Chrome/Chromium do. (There was a hack workaround to keep Chromium from updating, but I forgot what it was or if it still works. It wasn't a trivial option in the browser itself like it should be.)
I use a certain extension. An update turned the extension into payware, locking 90% of the features behind a paywall. So I refuse to update it and instead continue to use the revision that still has all the original features. I would be absolutely incensed and outraged if my browser insisted on forcing me to update this extension!
Surely there are better ways for a developer to make money off of an existing extension without suddenly locking previously available functions behind a paywall. Perhaps instead paywall NEW features? Or ask for donations?
The "original" Chrome is basically the mother of all supply chain vulnerabilities and whenever the inevitable exploitation happens, everyone who thought they were a connoisseur of security is going to get completely pwned.
But I suppose in your clown world security model the big US corporations who have proven again and again that they will act against your best interests are the only ones to be trusted while individuals with a proven track record must be sandboxed at all costs.
