New Update Osprey Browser Protection discussion and updates

Foulest · May 24, 2026

Marko :) said:
You're using mailto: for opening mail client and sending mail to report false positives, right? You could implement that by clicking on Report this website as safe, you're sending the mail to all security providers that flagged website as malicious at once.

This way user sends just one e-mail instead of sending multiple for each provider. And as a bonus it only needs to click the continue button once to access the website. Additionally, I'd add a checkbox with text something like "I am aware website could have malicious intent" which then makes Continue anyway button available for click.

That might make user question the decision if it didn't read the warning.

Some providers don't use mailto: links. It would be a big pain technically to make it all one big email (who would be the primary email target? if one provider replies, would everyone get pinged?) Also, I'd hate to have to click a checkbox every time I need to click Continue anyway. It's up to the users to read, it's not legally binding. I might make it a dropdown or separate button you need to click, like how Google Safe Browsing does, but I'm not sure. The less friction for the user, the better.

Foulest · May 24, 2026

If you really want to never see any warning pages for a specific website, the Always allow option works wonders.

bjm_ · May 24, 2026

Does Osprey 2.0.0 block http/IP? Against http/IP URLHaus samples. I'm not seeing Osprey block.
Maybe -- Osprey will now only block pages with at least 2 providers flagging to prevent FPs -- is causal?
Norton 360 detects -- Osprey Browser Protection does not.

Spiff · May 24, 2026

bjm_ said:
Does Osprey 2.0.0 block http/IP?

Do you mean addresses with http, not https?
This was mentioned by Shadowra as well.
Osprey said it will be fixed in the next update.

bjm_ · May 24, 2026

Spiff said:
Osprey said it will be fixed in the next update.

Okay....2.0.0 is current and next update is 2.x.x
Thanks

simmerskool · May 24, 2026

just curious, it's been about +13h since I posted my issues with metadefender api key / account, no replies, does that mean no one (yet) is using metadefender (perhaps except @Foulest) -- (no offense intended I like osprey) and I'm "sorry," I just have no desire to (re)enable xcitium integration to see what happens at a malware page...

Foulest · May 24, 2026

simmerskool said:
just curious, it's been about +13h since I posted my issues with metadefender api key / account, no replies, does that mean no one (yet) is using metadefender (perhaps except @Foulest) -- (no offense intended I like osprey) and I'm "sorry," I just have no desire to (re)enable xcitium integration to see what happens at a malware page...

I'm able to create a Metadefender account just fine. I go to my profile, I get my API key, paste it in, and it works.

simmerskool · May 24, 2026

Foulest said:
I'm able to create a Metadefender account just fine. I go to my profile, I get my API key, paste it in, and it works.

thanks good to know! curious if you're willing to share, not your email address, but email domain you used, is it a business email domain? The reply I got from metadefender: could not register my new account because of the fastmail domain. chatGPT tells me "Fastmail: medium-sized, long-running, reputable. Founded in 1999, headquartered in Melbourne, Australia, customers worldwide, no ads/data-mining pitch, and generally well-regarded as a paid email provider." yet metadefender balked. do you know the requirements for metadefender to accept an email domain for account registration? IIRC it wanted business info on the webpage for a new account.

Email and calendar made better

Fast, private email hosting for you or your business. More productive, lightning fast, simple and built to save you time.

www.fastmail.com

Foulest · May 24, 2026

simmerskool said:
thanks good to know! curious if you're willing to share, not your email address, but email domain you used, is it a business email domain? The reply I got from metadefender: could not register my new account because of the fastmail domain. chatGPT tells me "Fastmail: medium-sized, long-running, reputable. Founded in 1999, headquartered in Melbourne, Australia, customers worldwide, no ads/data-mining pitch, and generally well-regarded as a paid email provider." yet metadefender balked. do you know the requirements for metadefender to accept an email domain for account registration? IIRC it wanted business info on the webpage for a new account.

Email and calendar made better

Fast, private email hosting for you or your business. More productive, lightning fast, simple and built to save you time.

www.fastmail.com

I used my own domain for it. But, just now, I made a new account with a Gmail email address. I got their registration email, activated it, and I got my new API key.

simmerskool · May 25, 2026

Foulest said:
I used my own domain for it. But, just now, I made a new account with a Gmail email address. I got their registration email, activated it, and I got my new API key.

I went back to metadefender get api key link from Osprey (lowered some privacy/security here) used a different email provider, and was successful and input/saved my new api key in metadefender reputation slot. the settings also say Webroot (metadefender) & OpenPhish (metadefender), does that mean both those accept the metadefender api key?

Foulest · May 25, 2026

simmerskool said:
I went back to metadefender get api key link from Osprey (lowered some privacy/security here) used a different email provider, and was successful and input/saved my new api key in metadefender reputation slot. the settings also say Webroot (metadefender) & OpenPhish (metadefender), does that mean both those accept the metadefender api key?

They work with the same API key. It's automatically applied in those providers.

cartaphilus · May 25, 2026

Foulest said:
Sorry for the inactivity. I've been sitting on a big update, and I just graduated college.

Here's the changes in version 2.0.0 that's live on Firefox:

Let me know what you think.

Congratulations!!!! Sigh to be young again. I remember when I graduated..........

piquiteco · Tuesday at 5:15 PM

@Foulest Thank you so much! I really like the update to the Osprey extension with the third-party integrations—it turned out great. MetaDefender is working perfectly and more than makes up for the other engines that were removed. Thanks a lot. Excellent work and a great project. Best regards!

Moonhorse · Tuesday at 7:22 PM

Is it possible to add button to change extension languange? On waterfox for windows/linux finnish languange isnt avaiilable for browser ( except using extension for that) and it pretty much shows osprey on english languange.

Im fine with current state, but it was translated pretty well with finnish also, so if possible this is feature request

Foulest · Tuesday at 7:23 PM

I'll re-add the Finnish translation in the next update.

Search

Search

New Update Osprey Browser Protection discussion and updates

Foulest

Level 4

Foulest

Level 4

bjm_

Level 16

Spiff

Level 2

bjm_

Level 16

simmerskool

Level 50

Foulest

Level 4

simmerskool

Level 50

Email and calendar made better

Foulest

Level 4

Email and calendar made better

simmerskool

Level 50

Foulest

Level 4

cartaphilus

Level 20

piquiteco

Level 24

Moonhorse

Level 40

Foulest

Level 4

You may also like...