Còn chờ gì nữa mà không mau đăng nhập hoặc đăng ký để cùng tham gia thảo luận với cộng đồng!
Since this author is refusing to even way disclose to prospective and existing users what he is now admitted multiple times without any decent explanation I am reporting this.
Per this Github issue I opened:
and this discussion here where he only briefly provides a very cagey explanation of:
In short words: Google cleans own localStorage in his domain google.com or national (google.de etc.), so we have to save settings of user in some another domain. For example, github.io
If you search the code (which he also will not explain why he has clearly taken steps to obsfucate) for this string:
However, his explanation nicely omits the fact that the Github.io he chose is the AUTHOR'S personal, PRIVATE Github storage to which you have no READ access and herein lies the issue:
So now he has now at least twice confirmed that If you are running this script - YOU ARE ACTIVELY AT EVERY VISIT TO GOOGLE.COM, UPLOADING YOUR ENTIRE GOOGLE LOCALSTORAGE DATA TO HIS PRIVATE, LOCKED GITHUB STORAGE. He now updated the script desciption to very inaccurately mention a badly abbrevated "save of each select in ext. localStorage" that fails to mention how much data and that it is to HIS private storage on the Internet.
You cannot view the data you are uploading (because it is a POST action). You also cannot, however, even confirm what exactly he is doing above and beyond this because he has taken steps to obfuscate the script code and as of today has still not posted a full, unobsfucated version, nor provided me access to my data he has stored on his personal Github storage.
If this is so harmless and such unidentifiable information, I would expect a public repo with EVERYONE'S "harmless" data - but as a DEV myself I ask why the script simply does not use the very same localstorage methods already being used in this very script to instead simply write the Google data needed to a new local variable that Google is not (supposedly) "erasing" on the local browser storage (the reason he is stating he is taking the data to begin with). This is ludicrous I myself can write out localstorage to ANY local variable I want in a script, either per session or to survive multiple sessions (that's what it's there for!) - without EVER needing to UPLOAD it - ANYWHERE.
Obfuscated, quietly uploading everyone's Google data to a secret, locked location without spelling out this very questionable supposed functionality requirement in any of the script's documentation or even code comments - This script needs to be removed or require he immediately disclose very clearly of this activity on the script's description!