Mozilla has introduced a new rollback feature for Firefox extension developers, giving them a way to quickly address critical issues. This tool allows developers to revert to a previously approved version of their extension, which is especially useful when a bug is too serious to wait for a full review of a new, patched version. The process is simple: developers can select the “Rollback to a previous version” option in the Developer Hub, and the older version is then republished. This allows developers to act fast, ensuring a better and safer experience for their users.
Once an extension is rolled back, the buggy version is no longer available for new installations. For existing users, the process is largely seamless. If their browser has automatic updates enabled, it will automatically revert the extension to the older, stable version within 24 hours. Mozilla notes that this quick update system ensures that users are protected from a problematic extension without having to manually intervene. This feature is a game-changer for maintaining the integrity and reliability of the Firefox add-on ecosystem.
The ability to roll back is available to any extension that has at least two approved versions. For extensions distributed on addons.mozilla.org, developers can roll back to the version that was released just before the current one. However, for extensions that are self-distributed, developers have the flexibility to revert to any previously approved version. This tiered approach provides developers with the necessary control to manage their extensions effectively while still maintaining a layer of security and quality control.
In addition to this new rollback feature, Mozilla has been actively improving the security of its add-on portal. This past June, the company launched a new security measure to block malicious extensions, particularly those designed to steal cryptocurrency from users. Andreas Wagner, who leads the review and content security team for addons.mozilla.org (AMO), stated that hundreds of these malicious extensions, including many scam crypto wallets, had been discovered and removed in recent years. This proactive approach shows Mozilla’s commitment to protecting its user base from increasingly sophisticated threats.
This increased vigilance is a direct response to recent malicious activity. Over the summer, two major campaigns flooded Mozilla’s official add-on store with nearly 200 extensions impersonating popular crypto wallets like Coinbase, MetaMask, and Trust Wallet. By rolling out features like the rollback tool and strengthening its security protocols, Mozilla is working hard to ensure that the extensions available on its platform are not only functional but also trustworthy and secure.
Reference:
