This is just a link to a Github repo with only 2 stars, a total of 7 commits and no activity in the past 8 years, with not even a README describing what it is or why it would be interesting to anyone.
Why is this being posted? Who is upvoting this? It seems super fishy. I'm suspecting the repo actually contains malware.
> Because many USB devices are not designed to handle potentially-malicious interactions over the USB protocols and because those devices can have significant effects on the computer they're connected to, we believe that the security risks of exposing USB devices to the Web are too broad to risk exposing users to them or to explain properly to end users to obtain meaningful informed consent. It also poses risks that sites could use USB device identity or data stored on USB devices as tracking identifiers.
This is just a link to a Github repo with only 2 stars, a total of 7 commits and no activity in the past 8 years, with not even a README describing what it is or why it would be interesting to anyone.
Why is this being posted? Who is upvoting this? It seems super fishy. I'm suspecting the repo actually contains malware.
Even better - adb can run in browser thanks to WebUSB: https://app.tangoapp.dev/
(not in Firefox though, thanks to Mozilla's stance)
> Tango uses standard Web features to communicate with Android devices.
A "standard" which is implemented by exactly one browser? It's not just Firefox; it's not in Safari either.
It's not implemented by them because they refuse to implement it. Apple for obvious reasons, but Mozilla's stance disappoints me.
Regardless of reasons, it's a bit rich to call something a "standard" when only one vendor implements it.
> Apple for obvious reasons, but Mozilla's stance disappoints me.
AFAICT, both of them correctly point out that it's a huge privacy and security attack surface. Per https://mozilla.github.io/standards-positions/ -
> Because many USB devices are not designed to handle potentially-malicious interactions over the USB protocols and because those devices can have significant effects on the computer they're connected to, we believe that the security risks of exposing USB devices to the Web are too broad to risk exposing users to them or to explain properly to end users to obtain meaningful informed consent. It also poses risks that sites could use USB device identity or data stored on USB devices as tracking identifiers.
And I can't see any reason to disagree with that.