Repository files navigation

Firefox extension that links to theHacker Newsdiscussion for the current page and preserves privacy with Bloom filters.

Install the browser extension from one of the following sources:

• Download from the Mozilla Add-on website
• Download from GitHub

The extension will light up bright orange when the current page has previouslybeen posted to Hacker News.

• Clicking the extension will open the Hacker News discussion.
• Clicking the extension with the scroll wheel will open the discussion in anew tab.
• Clicking while holdingCtrl orShift will open thediscussion in a new tab or window, respectively.

There are also keyboard shortcuts.

• Alt +Y opens the Hacker News discussion in the currentpage
• Ctrl +Shift +Y opens the discussion in anew tab.

Star this project if you like it!

Read theHacker News Discussionfor this project.

When you visit a website, this browser extension determines whether the websitehas been submitted to Hacker News. A naive (but effective) way to do this is toquery the very helpfulAlgolia Search API for HackerNews with every page visited. In fact, that's whatthe original version of this extension did when I wrote it over the summer of2020! Unfortunately, there are two problems with this naive approach: youreveal every website you visit to Algolia, and you waste bandwidth and energysending and receiving extraneous API requests.

To solve this problem, this extension uses a data structure called aBloomfilter to protect your privacy.Bloom filters can be thought of as a super condensed representation of thefingerprints of a long list of URLs. In this way, you can download the Bloomfilter once (with periodic updates), and check if it contains the currentwebsite's URL fingerprint without making any requests over the Internet.

If the current page has been on Hacker News, the extension lights up andbecomes clickable. Clicking it retrieves a link to the best discussion for thepage and navigates the browser there.

By default, the extension uses several Bloom filters to show a lower-bound onthe score for each page. This can be easily disabled from the "Options" pagefor the extension, accessible by going toabout:addons. It might be desirableto disable this if using multiple filters is too resource-intensive.

Click to read more about score thresholds

It seemed reasonable to use at most five distinct Bloom filters. Because theybecome increasingly sparse as the number of stories in the Bloom filterdecreases, they compress well, so adding additional Bloom filters doesn't havea massive impact on the total amount of data downloaded.

On the other hand, uncompressed, they total5 * 16MB = 80MB in memory – morethan this seemed unreasonable.

The five thresholds for the Bloom filters were chosen mostly by eye, butvalidated and tuned using analysis of the dataset.

Range	Count
0-10	3381917
10-75	300300
75-250	121291
250-500	25739
500+	7948

As of February 28, 2021, the ranges have an approximately logarithmicallydecreasing number of entries. This is desirable because this mirrors the truedistribution of the data, which is also approximately logarithmic. It alsoallows for acceptably sensible, informative score ranges.

The data used for this analysis can be viewedhere.It was generated with the following BigQuery SQL query, and the thresholds weretuned in the spreadsheet.

SELECT  score,COUNT(score)AS countFROM`bigquery-public-data.hacker_news.full`WHERE  scoreIS NOT NULLAND score!=0GROUP BY  scoreORDER BY  score

You still send data to Algolia when you click the extension to visit thediscussion. The improvement offered by using Bloom filters is to not sendallof the sites you visit to the API, butsome data still need to be sent toretrieve the link to the discussion. Moreover, by default an updated Bloomfilter is downloaded once every 24 hours from GitHub. It is possible thatGitHub maintains logs of who downloads these releases.

Browser extensions have a lot of power to harm users, so it is important tounderstand what you are running. To that end, I provide a description of how toread this code. Please audit the code before running it.

This repository has three parts:

1. Code to pull Hacker News data and generate Bloom filters from it
2. Code for the browser extension
3. A Bloom filter library used by the Bloom filter generator and the browserextension – just one implementation used by both parts of the project

Each of the three individual parts of the code are described in greater depthbelow. Click "Details" to read more.

TheMakefileis used for almost all parts of the code, and is a good place to start readingto understand how everything fits together.

This project is actively developed and maintained. If there have not beencommits long after the initial release, everything is probably runningsmoothly!

The project is designed so that even if something were to happen to me, as longas my GitHub account is open, the Actions workflow should continue to releaseupdated Bloom filters.

I will do my best to address issues in a timely fashion, but I'm busy and thisis a side-project. Unsolicited pull requests are likely to be ignored. This isbecause releasing a browser extension means I have a (moral, notlegal– see theLICENSE)responsibility for the security of everyone who installs it. As a result,vetting random pull requests is typically not worth the effort unless theyaddress an issue that has been discussed beforehand. I'm happy to have others'support, just ask first – open an issue to do so.

1. Fork your own copy of the repository
2. Create a new project inBigQuery
3. Create a service account with theBigQuery User permission
4. Generate a JSON key
5. Enable Actions for the repository
6. Copy the JSON key into an Actions secret calledBQ_JSON (under Settings >Secrets > Actions)
7. Make your fork public if you want to be able to access it unauthenticated
8. Change the repo to your liking, maintaining attribution and the LICENSE file!
9. Change the repo to your liking, maintaining attribution and the LICENSEfile!

• There is currently no version of this extension for Google Chrome. To readmore and discuss, check out the relevant issue(#1).

• TheURLcanonicalizationis highly imperfect. There will inevitably be false negatives in Bloom filterresults. Suggestions for improving canonicalization in general, or forspecific sites, are welcome!

• If the button is clicked, Algolia search tries to return the "best"submission for a given URL. Often this is not the latest submission, but theone with the most points.

  This also means that if the button is clicked for very recently submittedstories (when browsingnew, forexample), Algolia may not have indexed the story yet, causing the redirect tofail.

• On my computer, the plus signs in the badge text gets cut off for three-digitscores (#2).

There are a few things you can do to support the project:

• Star the repository (and follow me on GitHub for more)
• Share and upvote on sites like Twitter, Reddit, and Hacker News
• Report any bugs, glitches, or errors that you find

These things motivate me to to keep sharing what I build, and they providevalidation that my work is appreciated! They also help me improve the project.Thanks in advance!

If you are insistent on spending money to show your support, I encourage you toinstead make a generous donation to one of the following organizations. Byadvocating for Internet freedoms, organizations like these help me to feelcomfortable releasing work publicly on the Web.

• Electronic Frontier Foundation
• Signal Foundation
• Mozilla
• The Internet Archive

This project is not affiliated with Hacker News, Y Combinator, or any YCombinator-backed company.

This project would not exist in its current form without:

• Daniel Gackle (dang)
• Logan Snow (@lsnow99)
• Amy Liu
• Hacker News
• Thomas Hurst'sBloom filter calculator
• zlib
• MurmurHash and Austin Appleby
• GitHub Actions
• BigQuery
• Algolia Hacker News Search
• Anyone who has asked or answered a helpful question on StackOverflow
• Mozilla Developer Networkdocumentation – mysine qua non for writing anything for the Web, includingbrowser extensions