What Chromium versions are major browsers are on?

https://chromium-drift.pages.dev/

74•skaul•1h ago

Comments

mm263•1h ago

Please add Helium

Yehoshaphat•42m ago

I second this motion.

wswin•37m ago

and Ungoogled Chromium

butz•1h ago

I would like to see all "desktop" applications that use Electron listed and how big of a Chromium drift is there, especially how many applications are shipping runtimes with unfixed vulnerabilities.

nicoburns•1h ago

I imagine that looks pretty bad. On the other hand, Electron apps often aren't running untrusted code, which makes it quite a bit harder to exploit.

josefx•23m ago

Didn't some get exploited early on because electron made it trivial to load third party websites without any kind of XSS protection?

captn3m0•55m ago

I've been working on this over the years. WIP is here: https://github.com/captn3m0/electron-survey, and it doesn't look good.

I keep getting distracted by side-quests. The last one was building an Electron Zoo, and the current one is doing accurate SBOMs for each electron version.

panzi•27m ago

Just wanted to write the same comment!

waitwhatwhoa•2m ago

We did a study of this a few years ago[1] and the code for the instrumentation is available on github[2], the data is dated but you can see a cross section of popular apps and how far behind they were lagging over a 3 year period on page 11 of the pdf. Re: child comment, our main concern in this research was patched vulnerabilities persisting in electron apps and how damaging that could be. Details in the paper :)

1. https://www.usenix.org/system/files/usenixsecurity24-ali.pdf 2. https://github.com/masood/inspectron

jjmarr•1h ago

Shouldn't it also show the version number of the browser the user is currently on?

koolala•33m ago

Which user?

catlikesshrimp•16m ago

The one visiting the website (tfa website)

koolala•2m ago

Why? What does tfa mean? I'm visiting it on Firefox.

quantumleaper•1h ago

Cool idea, but without longer-term tracking of how long each browser lags for each Chromium release, it's hard to draw any meaningful conclusions. It's also clear that in the case of major vulnerabilities, vendors would fast-track adoption of the patch.

I would definitely include the fact that "major" versions of Chromium are released every 2 weeks. For instance, Vivaldi is on version 146.0.7680.218 that released this Tuesday [1], only 5 days ago.

[1] https://chromium.googlesource.com/chromium/src/+/f97d14f8a0a...

dopa42365•49m ago

More like 4 weeks than 2.

https://chromestatus.com/roadmap

dataflow•1h ago

> Why does Chromium version lag matter?

> users are exposed to known, already-patched security vulnerabilities

Then why only focus on major versions? Don't minor versions/revisions have security fixes?

xeeeeeeeeeeenu•14m ago

Yes and also stable isn't the only maintained branch of Chromium, there's also extended stable (currently 146.x). LTS exists too (144.x), but I believe it's meant only for ChromeOS.

UberFly•1h ago

This is somewhat useful, but I know for instance that Vivaldi is often one version behind for the sake of stability, but also will also release incremental security updates in the period before major version updates.

pimlottc•47m ago

Please don’t use green/red schemes, it’s the most common form of colorblindness and it’s especially bad with such pale shades.

xandrius•3m ago

It has text supporting the color, so it's fine.

koolala•34m ago

Could add the Meta Quest browser

Fokamul•22m ago

This website, for me, it's named "List of all browsers I will never use".

Yet another reminder, lawmakers US/EU/Anywhere else, should force all browsers to actively block fingerprinting.

Retr0id•5m ago

Is "uptodown" really the canonical download page for Comet?

A point-in-time view is interesting but it's less useful than a graph over time.

I Use Codex CLI to Write and Maintain a Book on Codex CLI

The Audio Industry Is Grappling with the Rise of 'Podslop'

Brush a Bash/POSIX-compatible shell written in the Rust

The Death of Scrum – Built for a slower world, performed by those who left

The Croupier – AI-powered candidate discovery and ranking for recruiting teams

Camera Obscura #1

Fake Money Saved Brazil (2010)

Ferrari Luce

Strategic Orbit Wars competition on Kaggle

Data Breach Hits Anti-ICE Organizing Site Gtfoice.org

Wheel Reinvention: Not Just a Common Metaphor

Talking to Transformers

Supercollider

Separating what AI does well from what code does well

Original Volkov Commander Sources

Mapping Notable Geo-Triangles

Open source desktop app for studying online courses

Show HN: Security Scanner for Agent Skills and MCP

Lyra 2.0: Explorable Generative 3D Worlds

Past Ferrari Models, 1947–2023

Show HN: A Privacy tool that finds and hides sensitive data in phtots/videos

A GitHub for Maintainers

Public Runtime for Convera for LLM's

Show HN: Ableton Live MCP

MCP-x-Mac-Seed – An AI agent that discovers Mac apps and writes its own tools

BYOMesh – New LoRa mesh radio offers 100x the bandwidth

What Happens When the World Is Fatherless

Show HN: Orchestrate Dockerized Claude Code sessions from your issue tracker

Should You Be a Carpenter? [video]

Caisi Evaluation of DeepSeek V4 Pro