[Animats]

Using big external libraries in Firefox add-ons used to be totally prohibited. Jquery used to be prohibited outright. It's an undesirable practice. Add-ons operate at a higher privilege level than web pages. The low-quality webcrap that can be tolerated on a web page has no place in a privileged add-on.

[omouse]

Agreed and this is why React has been given a pass I think, because it's only for display purposes.

[vmasto]

Really it doesn't matter if it's for display purposes or not. It all boils down to implementation. I can make a view library riddled with XSS vulns in very little time.

[spicyj]

React is actively maintained and doesn't have any known security vulnerabilities.