Add-ons Blocking Process
Add-ons enable users to add features to Firefox for a personalized browsing experience. Most add-ons are created with the best intent, providing users with useful and delightful features. However, add-ons can also be used to compromise personal data and security.
When Mozilla becomes aware of add-ons that go against user expectations or otherwise risk user privacy and security, it takes steps to block them from running in Firefox. This may happen proactively, or in response to an abuse report. When an extension is blocked, it is disabled in Firefox and users are not able to override the block.
The following describes Mozilla’s common practices for dealing with add-ons that appear to violate theAdd-on Policies. Authoritative information on the conditions for removing or revoking add-ons can be found in theFirefox Add-on Distribution Agreement and theAdd-on Policies.
Security Over Choice
When deciding whether to block an add-on from running in Firefox, we ask whether the risk is so great that it outweighs the user’s choice to install the software, the utility it provides, as well as the developer’s freedom to distribute and control their software. If we encounter a situation where we cannot make a clear-cut decision, we will err on the side of security to protect the user.
Blocking Criteria
Blocking is reserved for add-ons with the following characteristics:
- They appear to intentionally violate policy
- They contain critical security vulnerabilities
- They compromise user privacy
- They severely circumvent user consent or control
Add-ons that appear to be clones, repeats or close copies of already blocked add-ons will also be removed. If an issue is known to affect only a subset of versions, the block may be applied to the affected versions specifically. Add-ons that contain obfuscated or comparably unreadable code will also be blocked.
Developer Outreach
When we decide to block an add-on, we may reach out to the developer if we believe the issue can be remedied. As the security of users may be at stake, we require developers to respond within three days. If no response is received within this timeframe, or the developer isn’t able to address the issue, we may proceed with the block.
More commonly, we will not reach out to developers prior to blocking if it appears that the add-on is intentionally violating our policies, or the violation is sufficiently severe.
Requesting a Block
If you have encountered an add-on that you believe meets the criteria for being blocked, you mayrequest a block. Note that developers cannot request a block of their own add-ons.
Mozilla only blocks add-ons based on theFirefox distribution agreement andadd-on policies. When requesting a block, please read these carefully as the policies do allow certain forms of monetization and data collection.
Blocking Other Types of Third Party Software
In addition to add-ons, Mozilla may also block other types of software that pose a risk to the user.
Mozilla may limit hardware acceleration features of graphics cards for certain graphics driver versions in accordance with thegraphics driver blocks policy. This is done for stability reasons, to avoid driver crashes that would interrupt the user.
Contributors: caitmuenster kewisch
Last update: caitmuenster
Up Next
Publish
Third Party Library Usage
Publish
What does review rejection mean to users?
Publish