thegreatsuspender VS rnnoise

Happened in (2021)[https://github.com/greatsuspender/thegreatsuspender/issues/1...], and then a few others have forked the extension and tried to revive it, only to eventually sell to nefarious owners or sell user data themselves

I went to github and downloaded the last known "good version, installed it manually."

You want someone to die for disabling a potentially malicious extension that is unmantained since 2020?

Also if you want to read up on the removal of the app and the malware issues this post goes over it as well as other recovery options

Similar code projects have had issues like this before, like the open source Great Suspender.

What can happen after a project changes hands - https://github.com/greatsuspender/thegreatsuspender/issues/1263

Better link https://github.com/greatsuspender/thegreatsuspender/issues/1...

> TLDR: The old maintainer appears to have sold the extension to parties unknown, who have malicious intent to exploit the users of this extension in advertising fraud, tracking, and more. In v7.1.8 of the extension (published to the web store but NOT to GitHub), arbitrary code was executed from a remote server, which appeared to be used to commit a variety of tracking and fraud actions. After Microsoft removed it from Edge for malware, v7.1.9 was created without this code: that has been the code distributed by the web store since November, and it does not appear to load the compromised script. However, the malicious maintainer remains in control, however, and can introduce an update at any time. It further appears that, while v7.1.9 was what was listed on the store, those who had the hostile v7.1.8 installed did NOT automatically receive the malware-removing update, and continued running the hostile code until Google force-disabled the extension.

For what it is worth, you may have heard of the Great Suspender incident (https://github.com/greatsuspender/thegreatsuspender/issues/1263). It was used by millions, and was also open source on GitHub, but it could still end up becoming malicious.

Long ass comment: That is not true for the most part. While the increased amount of individuals working of an OSS project may lead to better vulnerability detection according to both parties of the closed-source/proprietary debate, it doesn't lead to a massively more secure software overall. Not all reviewers have the similar experience or expertise and, because of it, not everyone will be able to review, identify or patch any flaws or vulnerability of a specific software since it may require other skills beyond just basic programming skills such as network or cryptographic skills. [1] Some even suggested that the large number of users contributing to the project can lead people "into a false sense of security." [2] Overall, some papers conclude that being an open source software or a proprietary software isn't an important factor for security and suggest considering other factors, such as the particular vendor/maintainer that controls the entire process. [3] After all, what if the maintainer decides to sabotage their own code? What if the project was sold to another maintainer for its own shaddy needs?

If you're referring to The Great Suspender, that extension was bought by an advertising company earlier this year. I'm using the last good version (github) though.

It has been done before, for eg the original RNNoise was trained on proprietary data, later there was crowd-sourced effort to record new data and have it under libre licenses.

https://github.com/xiph/rnnoise/

This reminds me a lot of https://github.com/xiph/rnnoise and my use of it locally. It zeroes in on voice via RNN which seems to beat most other noise detection filters I've tried. Unfortunately, I mostly disable it these days since it's a bit harder to tune than I'm up for, but it's by far the most promising local noise reduction I've used.

Sure.

Carla: https://github.com/falkTX/Carla

It lets me install any normal audio pro audio plugins, for example https://github.com/xiph/rnnoise

It also does some cable management, but qpwgraph is maybe better for that.

I looked at your code and the approach (IMO) is kind of bad.

If you want to solve the problem of "voice changer", you can skip the UI entirely and just use plugin parameters. You can also skip the problem of managing the connections. And when you publish your work, every pro audio software (Ableton, Reaper, whatever) can use your audio processing.

Hope that helps.

Interesting! How does it compare with NoiseTorch/RNNoise?

Das ist eine open source lib. Damit sollte das klappen. https://github.com/xiph/rnnoise/blob/master/examples/rnnoise_demo.c

RNNoise (behaves similarly to RTX broadcast/voice/whatever the fuck they're calling it now, but with significantly better performance) - plugs into OBS or other programs flawlessly

OBS ships with rnnoise noise reduction, which is like NVIDIA Broadcast, but works on any CPU. See also NoiseTorch and EasyEffects if you're on Linux.

It's pretty great, works decently, but the sad thing is the author put it out a few years ago, wrote a paper and then moved onto something else and it's pretty much unmaintained and requires some very specific ML knowledge.

https://github.com/xiph/rnnoise