Groups keyboard shortcuts have been updated
Dismiss
See shortcuts

In half a year, I was blocked by Google for 8 developer accounts, but I don't know the specific reason

125 views
Skip to first unread message

letao guo

unread,
Nov 27, 2024, 10:09:18 PM11/27/24
to Chromium Extensions
Dear Google officials,
Hello!
I have been blocked by you from the middle and late June 8 developer accounts, I first thought it was the account association, but with each time I optimized the code, I was immediately blocked as soon as the product was submitted! I am broken, I am just a small indie developer, I like to make some gadgets for users, make some money! Every time you gave me the title, it was for the same reason:

  We examined your account in detail before concluding it as malicious. According to Chrome Web Store policy, malicious content is an unrectifiable violation. We can’t disclose details about the malicious activity due to security reasons. As the item is rejected for engaging in malicious activities harmful to users and given the nature of the violation the account will not be reinstated. For more information, please refer to this Content Policies section.


But each time without specifying a specific reason, I repeatedly thought that there might be a problem with the program:
1. We need to optimize the style of many websites to provide services, so these strategies we are issued through JS code, this is not officially allowed;
2. In addition, our products have the need to help users translate the text in the pictures, but when the user cannot download the pictures locally, we upload the user cookie to help him download the pictures from the server side, and then translate the pictures, return the result to the user, is this an official policy support?
If you can tell me, please directly specify, very feel know the internal staff told us, I have wasted half a year, just to the product can be arraigned on the line!!

  


Charlene Prince

unread,
Nov 28, 2024, 12:43:56 AM11/28/24
to Chromium Extensions, letao guo
Help how do I check if my google accounts are being watched by someone else.i feel I have some one looking looking at my personal phone settings 

Juraj M.

unread,
Nov 28, 2024, 4:23:01 AM11/28/24
to Chromium Extensions, Charlene Prince, letao guo
"we upload the user cookie to help him download the pictures"
Are saying, you are taking user session token for various pages and upload them to your server? This is the most malicious looking feature I've ever heard of :D.
Seriously now, "stealing sessions" is one of the most popular malware goals these days, as you are getting full access to users account and can even complete actions in their behalf.
There is no way this will ever be allowed in any extensions store.

Why don't you simply take a screenshot of the image using captureVisibleTab API?

letao guo

unread,
Nov 28, 2024, 4:34:51 AM11/28/24
to Chromium Extensions, Juraj M.
Thank you for your reply. We have also developed a screenshot translation function, why why there is a function to help users download pictures translation, because there are many pictures on a page, feeling that users take screenshots, the user experience is not very good!

Another main reason is that we only entered the chrome webstore market at the beginning of this year, we do not understand the rules very clearly, I did not want to harm the user's behavior, but we did ignore some necessary malicious implementation of the function;

The most important reason is that the reason given by the platform is not very clear, so we have not thought about this aspect!

This leads us to nearly half a year, has been re-title process, can not find the specific reason!

letao guo

unread,
Nov 28, 2024, 5:05:08 AM11/28/24
to Chromium Extensions, Juraj M., Charlene Prince, letao guo
In addition, I would like to confirm that due to product reasons, dynamic support is needed to adapt to many websites. At that time, the JS supported by our program was used to issue the strategy, and I also filled in the specific reasons in the audit background. Is this method not also officially supported? Then why do developers need to fill in the reasons for using remote code when they are arraignees? I always thought that I only need to fill in the formal reasons, there should be no problem!

Why do I now come up with this question, because, I send many products similar to online banking is json suffix distributed configuration, such as this: https://v.s-downloader.com/script/2.0.1.2.json
Such a platform is not acceptable ah!

 I think I ask clearly this time, a good product optimization and then interrogated!

Thank you for your reply. Thank you very much!

在2024年11月28日星期四 UTC+8 17:23:01<Juraj M.> 写道:
Reply all
Reply to author
Forward
0 new messages