All my serial devices need careful handling and will happily destroy themselves or start a fire if given the wrong instructions — my 3D printer, my laser engraver, my inverter/solar/battery monitor-programmer.
None of them are remotely prepared or hardened in any way to protect from malicious or careless commands.
I don’t generally trust websites and I do not want any website to discover those devices and interact with them.
Maybe it will depend on the specifics of their UI/UX implementation, but I don’t think you’ll end up in a scenario where you’re surprised that a website suddenly has access to your serial ports. I expect the UI will be fail-safe, very visible, and that you’ll be able to disable it entirely if you wish, so that you never even see a prompt.
I do not want this.
You can completely disable the API in Chrome… I assume Firefox will allow this too.
Why?
All my serial devices need careful handling and will happily destroy themselves or start a fire if given the wrong instructions — my 3D printer, my laser engraver, my inverter/solar/battery monitor-programmer.
None of them are remotely prepared or hardened in any way to protect from malicious or careless commands.
I don’t generally trust websites and I do not want any website to discover those devices and interact with them.
Maybe it will depend on the specifics of their UI/UX implementation, but I don’t think you’ll end up in a scenario where you’re surprised that a website suddenly has access to your serial ports. I expect the UI will be fail-safe, very visible, and that you’ll be able to disable it entirely if you wish, so that you never even see a prompt.
Why you can disable the API completely?