Hacker News new | past | comments | ask | show | jobs | submit login

Browsers need better and more usable permissions (and less leakage). Every API that's added is another attack vector.

Yes, and not only permissions, but overrides, too. (For example, to specify that the battery level should always be reported as a user-defined constant, rather than the actual level, or to use a file instead of a camera (or vice versa) if the user wants to.)

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact