|
|
|
|
|
|
by gizmo
1256 days ago
|
|
|
This seems cool at first glance... but will users understand that this tool basically hijacks your user session to refresh the screenshots? In other words, this tool can only update a google analytics chart if you give it access to your gmail? That's scary. It also circumvents 2fa, because sessions are leaked to Plus after you've used your TOTP code or Yubi key. How can any business be OK with this?? |
|
|
First step is probably "don't look too closely" (:
I agree though — I would not want this thing doing who-knows-what-unverifiable-fiddling with my data and credentials.