Oddbean new post about login | logout How safe are even signing extensions really? Would you trust an extension to guard a bitcoin key of any value, for example?... or is this in the context reasonable safety is on a spectrum?
I wouldn't trust an extension to guard any substantial amount of money, no But they are much safer than websites because they run locally and you can build from source yourself, websites you can't know exactly what code is running