Google allows 37,000 Chrome users to be tricked with a fake extension by fraudulent developer who clones popular name and spams keywords.pic.twitter.com/ZtY5WpSgLt
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
The problem is Google has junior teams implementing safety-critical infrastructure like this & no senior review or use of existing solutions
That they're junior is obvious from the awful UI if the extensions site.
By "collapse", do you mean Punycode? Or a lookup table of similar chars? I'm reading up on the problem. https://www.chromium.org/developers/design-documents/idn-in-google-chrome …
Table of equivalence classes of visually similar characters.
good solution, but not perfect. It's possible for pairs of words in two alphabets to exist which are both valid words AND look identical
If that's the case for whole extension names, they MUST go through manual review for not being malicious clash, even if both are legit.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.