Forum Discussion

joeRinehart's avatar
joeRinehart
New Contributor
1 month ago
Solved

1Password Chrome extension is incorrectly manipulating <code> blocks

The latest 1Password Chrome extension is incorrectly manipulating the DOM within <code> blocks on static pages. It looks it's using prism.js to try to add syntax highlighting to <code> blocks on the ...
browser extension
  • 1P_Blake's avatar
    1P_Blake
    30 days ago

    Hey everyone! I want to thank everyone who called our attention to this and explain what happened and what we’re doing about it.

    What happened: Prism.js is a syntax-highlighting library we use for our Labs Snippets feature. While optimizing our build to reduce bundle size, we unintentionally bundled Prism.js into the extension in a way that caused it to run on pages where it shouldn’t, which interfered with code formatting on certain sites. We apologize for the inconvenience this caused.

    What we’re doing about it:  We’ve completed the fix and submitted it to the Chrome Web Store, along with Firefox, Edge, and our other supported extension storefronts. Rollout timing depends on each store’s review process, but we expect it to land over the next few days.

    We want to emphasize that vault security was not impacted. At 1Password, protecting our customers’ privacy, passwords, and credentials is our highest priority.

    We’ll be publishing a postmortem covering what went wrong, the timeline, and the concrete changes we’re making to how we build and release future browser extension updates.

takuyahara's avatar
takuyahara
Occasional Contributor
1 month ago

I was looking https://shiki.style/guide/install , an NPM package which provides syntax highlighting and showing detail hovering on keywords. It is expected to be shown and work like this

but is actually shown like this when using a beta or nightly browser extension. There's no issue on normal one.

  • OS: macOS 26.2 (25C56)
  • Browser: Brave v1.85.111
takuyahara's avatar
takuyahara
Occasional Contributor
1 month ago

* Marking this discussion as a solution to close *

1Password team responded on the following discussions and I also received a response from support personally. Their responses are all same "it's known issue and currently investigating" plus "but cannot provide an ETA" on a response I received. And it's not sure if team responds on this discussion when resolved so I close it. Who really needs the issue fixed ASAP might better to use nightly extension which reflects updates the fastest.

Chrome extension breaks client side code snippet rendering
1Password Chrome extension is incorrectly manipulating <code> blocks