If you have the time, will, and ability, audit the latest release and turn off auto update. That’s counter productive when the extension has its own attack surface of course.
I also haven’t read anything concerning about Mozilla’s Recommended review system yet.
Interesting!
> It can: Read and change all data on all your websites
It already has the broadest permissions available. Dark Reader injects arbitary code into every page you visit. It's one silent update away from stealing all your sessions. This is a security nightmare.
All browser extensions are a security nightmare.