Malicious Plugin would allow devs to use the API to violate TOS

darkarmor215 · February 6, 2026, 10:06am

The mentioned Plugin in Private message allows developer to read the "favorite“ list and “notify” list of the users.

And it would allow the 3rd party game dev to prompt the user to remove “favorite” and “notify” of game games which not developed by him/her.

Please take action.

Expected behavior

Improve the security measure or remove it from the platform when you can confirm the use case violates TOS.

A private message is associated with this bug report

bvetterdays · February 6, 2026, 10:33am

This is not a bug report. If you want to report a plugin, visit its Creator Store page and press “Report Abuse”.

Dogekidd2012 · February 6, 2026, 7:11pm

The API you have sent is working as intended.

Please consult How to post a Bug Report in the future.

Thanks!

system · February 20, 2026, 7:12pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.