Zero-dependency Firefox addon development tool - hot reload without npm supply chain risks
npm install asmodeusZero-dependency Firefox addon development tool with hot reload
Develop Firefox addons without npm supply chain risks. No dependencies. Just Node.js built-ins.
- π‘οΈ ZERO npm dependencies - no supply chain attack surface
- π₯ Hot reload - changes detected and addon reloaded instantly
- π Simple - one command to start developing
- π¦ Tiny - ~600 lines of auditable code
- π§ Powerful - uses Firefox Remote Debugging Protocol directly
vs web-ext: 0 dependencies vs 27+ packages, 600 lines vs 50,000+ lines
``bash`
npm install -D asmodeusor globally
npm install -g asmodeus
In your Firefox addon directory:
`bash`
asmodeus
That's it! Asmodeus will:
1. π¦ Launch Firefox with remote debugging
2. π¦ Temporarily install your addon
3. π Watch for file changes
4. π Auto-reload on save
- Node.js 16+
- Firefox installed
- A manifest.json with an addon ID:
`json`
{
"browser_specific_settings": {
"gecko": {
"id": "your-addon@example.com"
}
}
}
Use environment variables:
`bashCustom Firefox binary
FIREFOX_BINARY=/usr/bin/firefox-developer-edition asmodeus
What Gets Watched
All files in your addon directory except:
-
-
-
-
- , build/Manual Reload
bash
node node_modules/asmodeus/lib/reload-addon.js your-addon@example.com
`How It Works
Asmodeus uses Firefox's built-in Remote Debugging Protocol (RDP):
1. Starts Firefox with
2. Connects via TCP to port 6005
3. Uses RDP messages to install and reload addons
4. Watches filesystem with Node's built-in $3
Simple message format:
javascript
// Example: getRoot request
'21:{"to":"root","type":"getRoot"}'// Example: installTemporaryAddon
'{"to":"server1.conn0.addonsActor1","type":"installTemporaryAddon","addonPath":"/path/to/addon"}'
`Security Benefits
Traditional approach (web-ext):
- 27+ npm packages (not counting nested dependencies)
- Transitive dependencies
- Automatic updates can break things
- Supply chain attack surface
Asmodeus:
- 0 npm packages
- Uses only Node.js built-ins:
, fs, child_process
- Easy to audit (~600 lines total)
- Complete control over all codeFiles
-
- Main executable (~300 lines)
- lib/rdp-client.js - RDP protocol implementation (~280 lines)
- lib/reload-addon.js - Manual reload utility (~30 lines)Total: ~610 lines of simple, auditable code
API Usage
You can also use Asmodeus programmatically:
`javascript
import { ExtensionReloader } from 'asmodeus/rdp-client';const reloader = new ExtensionReloader(6005, 'localhost');
await reloader.connect();
await reloader.reloadAddon('your-addon@example.com');
reloader.disconnect();
`Troubleshooting
Firefox doesn't launch
bash
FIREFOX_BINARY=/path/to/firefox asmodeus
`Connection refused
- Firefox might take a few seconds to start RDP server
- Check that port 6005 isn't already in use
- Make sure Firefox is running with debugging enabled
Addon not found
- Verify
has browser_specific_settings.gecko.id`Contributions welcome! This project aims to stay dependency-free.
MIT
Asmodeus (ΧΦ·Χ©Φ°ΧΦ°ΧΦΌΧΦΈΧ) - In demonology, one of the seven princes of Hell. In this context: the daemon that watches over your addon development, reloading it when needed. Perfect for a hot-reload development tool! π