Why does #[0] call home to ajax.googleapis.com before I even sign into the app?
Discussion
It could be any one of a list of JS toolkits that they might have used being pulled down using Google as a CDN, or it could be a form of app analytics.
Very disappointing.
Tbf, I have been concerned about this with a number of clients. Allowing YouTube embeds is just as bad from a tracking perspective. It would be good to convert YouTube links to invidious embeds instead.
Do you know other clients doing this as well? Which ones?
nostr:note1vmgj55sqrg5lcf42hpcg4emqtltcg3sflmxppn8qvp4yycpkjnqspd3az5
https://reports.exodus-privacy.eu.org/en/reports/com.plebstr.client/latest/
says there are **no** trackers.
No matter what it is, the fact is Nostr should not be calling on Google APIs for anything. Disappointing. What's up with this nostr:npub1plstrz6dhu8q4fq0e4rjpxe2fxe5x87y2w6xpm70gh9qh5tt66kqkgkx8j ?
Hi, we use open-source privacy focused analytics called Plausible that helps us improving Plebstr.
We self-host them on our Google Cloud and that’s why you can see this.
We don’t use Google Analytics and we don’t collect any user-linked data.
Analytics by design are not privacy friendly. Open source does not = private. Do you have plans to remove this in the future. Will Plebstr be available on F-Droid without analytics in the future?
I asked dev fren about this, cause it sounds bit off putting, but I’m not sure that it is, he said:
They’re even self hosting it, so plebstr is the only ones who have this info, and it’s very little info. Tbh I would not be surprised if TestFlight collects more info than this by default.
Also said:
It’s all aggregated data - like which feature is used most - not individual.
The fact that Google is involved in hosting any sort of data is concerning.
nostr:note1vmgj55sqrg5lcf42hpcg4emqtltcg3sflmxppn8qvp4yycpkjnqspd3az5