A number of plugins provided through the Grav admin plugin link to diblas.net. The documentation is hosted by this domain, which sends the user’s browser through a gauntlet of pages requiring the user to add browser plugins. For any security conscious user, these popups, misdirections, and requests for software installation are alarming, raising questions about the legitimacy of the plugin provider. Way outside the norm of most websites.
An example URL: http://diblas.net/plugins/add-extra-markdown-files-to-any-page
Do we know that this provider is safe? Do we value the availability of plugins over the security of users? Is there something that can be done, or should concerned uses simply ignore the diblas plugins?
Thanks