I understand Brave will be adding extension support this year as well.
Glad to see it's open source now however there is no commit history (thus no individual patches) and it's not possible to see which version of Chromium this was forked from.
Very few browsers I've found let you choose.
I hate reaching to the top of my phone to create a new tab.
beta already has it, but lost extension support (for now, slowly coming back)
Extension support is coming, but at the moment only uBlock Origin is available.
> This code is up-to-date and is matching the build on the Play Store.
which seems to be in conflict with your statement.
Also not found on F-droid. Hard pass.
An F-Droid compromise could backdoor every app.
Not affiliated with Bromite, just cycling accounts, can point toward my last one if anyone's concerned about this acct's greenness.
[0]: https://finance.yahoo.com/news/prominent-youtuber-claims-bra...
I wonder if Preview will remain at all than.
Also, they may very well take PRs for extension support (haven't looked through their Issues/roadmap), but, I'm sure it's not on the top of a security-first project's to-do list.
For anyone: Why don't they cross-sign with their key+dev key?
I don't ask for anything in return, and you can do basically what you want with it.
Ok, you repeat on this thread that your own browser (Bromite) is better and so on essentially spreading FUD, but for what result ?
We both have something else to do than spending time on that.
There is no FUD here, let me write down some facts for you:
* users install Kiwi which does not contain all the security fixes of upstream stable Chromium (v81); this is been going on for several months now
* users do the same for Bromite and the Bromite SystemWebView
I warn everyone equally about this problem, nobody should run an outdated browser because of all the security issues, look at 2019 alone here: https://www.cvedetails.com/vulnerability-list/vendor_id-1224...
More facts:
* the current version of Kiwi, in Play Store and in source form, still is not up to date and covering the security issues fixed by upstream Chromium
* Kiwi was not open source until now and its repository was plain lying about it (https://web.archive.org/web/20190719191635/https://github.co...), making people think it was open source while you published only a few unusable patches
* even now there is no commit history making the source code unusable and unauditable
* you included trackers at some point in Kiwi and visits were going to some search server of yours
Did I miss anything? I am glad you decided to open source it but it does not change the above facts.
UCBrowser for example is an engine of 2017, Samsung Internet from 2019, etc
https://blog.mozilla.org/futurereleases/2019/06/27/reinventi...
Probably not. By the time the switch for release (non-nightly/beta) Firefox comes, I expect all the currently supported extensions will still be supported.
In the long-run, since the new architecture will be generally easier to develop, I hope that some of the WebExtension APIs supported on Desktop, but currently not on Android (on Fennec), will also become available on Android (on Fenix).
I think you're being too optimistic - the fact that the regular Nightly and Beta release channels have already been transitioned to the rewrite means that at the same time you've lost all large-scale capacity of doing any pre-release testing on the old version. While that one has been getting ESR-style bug fixes only for quite a while anyway, even those still need some amount of testing. So barring some major hold-ups, they're now committed to transitioning the Release channels in the near future as well, even if that means mediocre add-on support and quite a few other missing things.
And it's been clear for quite a while that they've decided on a https://www.joelonsoftware.com/2000/04/06/things-you-should-... -style rewrite for better or for worse...
- uBlock Origin
- NoScript Security Suite
- Dark Reader
- HTTPS Everywhere
- Privacy Badger
- Search by Image
I like the new UI: quick and intuitive. When you open a new tab, you see your most-visited sites, open tabs, and collections.
Liking collections, currently have 'Web dev' for my in-progress projects & servers and '{My city}' for local (health) news and other resources.
When I tried it a couple months ago, I remember being impressed but put off by missing features - downloads didn't work, etc. But it's looking better, good enough to use daily with Brave as a backup.
I personally won't touch Gecko anymore, and I've been a FF advocate since it was called Mozilla, ha
There is some confusion about the notion of up-to-date, from a Kiwi perspective, we do not see the most recent version of Chromium as improvements.
We created Kiwi (with other users) because we disagreed with Chromium on functionalities like Duet, or APIs changes like with Manifest V2 and adblockers.
This is the reason to completely fork Chromium (or why Samsung diverged from Chromium 77 in 2019)
By definition will always diverge from Chromium v81+.
It's a choice.
About security fixes, yes, between end of 2019 and today, new problems emerged in Chromium (not specific to Kiwi though), and there is some work to backport. Should it have been done earlier ? Certainly.
About the last point, Kiwi makes money if you use Microsoft Bing or Yahoo, that's life, and that's how I pay for the build servers, some contributors, advertising Kiwi, logo designer, sometimes the programmers, etc.
Firefox does the same but with Google, Brave with DuckDuckGo, etc.
I see you have StartPage, DuckDuckGo, AdGuard, already in partners, and if they don't pay you, I encourage you to contact them, as they should.
Regarding the policy of Kiwi:
====
We do not collect the websites that you visit. What you do in the browser is your own freedom and responsibility.
We do not collect or sell location data. We do not collect telemetry data. We do not collect history data. We do not track users. We do not integrate third-party analytics SDKs.
We collect and store: how many installs are active, where the person has installed the browser from.
Our business model:
When you enter a search query, the query is sent to the Search Engine that you have selected (Microsoft Bing or Yahoo by default, Google, DuckDuckGo, or any provider of your choice).
If you choose to use the recommended search engine by Kiwi, Kiwi will process the request and will receive money for every search query it forwards to the partner search engine (example: Microsoft Bing).
====
and you know, with the releasing of Kiwi as a free software (and not just open-source), now there is no limitation. If you disagree with how the project is managed, then you can absolutely make your own product (or just use another search engine heh), or take the pieces you want (and over time, a better picture over commit history will build), and this is a very good thing.
Also, thanks for the kind words at the end, you really pushed onto open-sourcing Kiwi too. Though sometimes you are a bit extreme for me :)
I am talking about telling users that they should not use a browser which is potentially vulnerable. Clear communication about the current status is not the same as planning an update.
> I see you have StartPage, DuckDuckGo, AdGuard, already in partners, and if they don't pay you, I encourage you to contact them, as they should.
There is no partnership with anyone. DuckDuckGo is a search engine already in upstream Chromium. StartPage search engine was removed months ago and some filters from AdGuard are used used in the combined Bromite filter.
There is no partnership and no payments of any kind because then there would be a conflict of interest to remove a search engine from the default choices while it is also a source of income.
> Also, thanks for the kind words at the end, you really pushed onto open-sourcing Kiwi too. Though sometimes you are a bit extreme for me :)
I am glad you are willing to be more open about these topics, these are I believe at the core of open source. I also wish you to make the project sustainable and fun to maintain.
About security, you provided very useful technical elements, so I'll review each of them (publicly) and we'll find solutions.
Yes, conflicts of interests are always an issue. Finding the right balance between sustainability and freedom.
Some companies outright want to maximize revenue at the expense of the user. This is not the case here (that's the benefit of no investors, or just being independent, with all the caveats it has too).
Some browsers (Vivaldi, Cheetah Mobile) for example do affiliates link, I'm not too much in favor of that.
You get me nervous sometimes with your strong opinions, but I actually appreciate that someone skilled takes so much time and interest.
About DDG, maybe it's worth talking to them or Qwant (Qwant are friends of Kiwi, so you can say Hi to them from me).
It's in their interest to promote a privacy-focused browser, and yours to pair with the best ethical match (donations are fine too, just personally I think they create another type of pressure)