Skip to content

Security: Yifo98/MediaCookies

Security

SECURITY.md

Security Notes

XF MediaCookies handles browser cookies, so treat exported files as secrets.

Expected Behavior

  • Cookie values are only written into user-triggered local ZIP downloads.
  • Preview tables, diagnostics, and manifest.json do not include cookie values.
  • The extension does not call fetch, XMLHttpRequest, or any remote API.
  • <all_urls> is optional and requested only for the explicit preview path that scans browser cookies against supported site rules.

Reporting

Do not include real cookie values in bug reports. Share only extension version, browser version, selected source names, and diagnostics logs generated by the extension.

There aren't any published security advisories