BZ 1881567 has added a black box listening proxy that listens for native messages from Google Chrome and allow remote direct control of the browser from there.
This seems like an easy way for malware to hijack LibreWolf (and other Firefox-based browsers since version 125) if they figure out the control protocol for it.
According to BZ 1886595 it's not enabled by default, but I think LibreWolf should still remove it, especially when it caused a binary signing issue in the past (see #2950).
[BZ 1881567](https://bugzilla.mozilla.org/show_bug.cgi?id=1881567) has added a black box listening proxy that listens for *native messages* from Google Chrome and allow remote direct control of the browser from there.
This seems like an easy way for malware to hijack LibreWolf (and other Firefox-based browsers since version 125) if they figure out the control protocol for it.
According to [BZ 1886595](https://bugzilla.mozilla.org/show_bug.cgi?id=1886595#c3) it's not enabled by default, but I think LibreWolf should still remove it, especially when it caused a binary signing issue in the past (see #2950).