If your main concern is usability, 1password works pretty well. The downsides are it’s paid, closed source, and I think they removed the option to use a local vault, so it might have to be cloud.

https://github.com/httpie/desktop

https://github.com/httpie

They have a CLI as well as a Postman like desktop interface. One thing I prefer about their GUI over Postman is the way variables are defined/edited for multiple environments in a single view.

No problem. Good luck on your search.

https://github.com/wallabag/wallabagger

It just lets you save, tag, and delete though. No list unfortunately.

I’ve been happy with wallabag.

I don’t think the extension meets your list/search requirements though.

Thanks for putting this together. Stuff like this is good for making it more approachable. I definitely have relatives that would benefit from this.

One note though, it would be good if the key included all of the icons and not just the three causes.

As the other commented pointed out, it would also be good to differentiate decentralized services, for example in the category with Mastodon and Bluesky.

Secure Annex has now found that the third wave uses the packages listed below.

VS Marketplace

iconkieftwo.icon-theme-materiall
prisma-inc.prisma-studio-assistance
prettier-vsc.vsce-prettier
flutcode.flutter-extension
csvmech.csvrainbow
codevsce.codelddb-vscode
saoudrizvsce.claude-devsce
clangdcode.clangd-vsce
cweijamysq.sync-settings-vscode
bphpburnsus.iconesvscode
klustfix.kluster-code-verify
vims-vsce.vscode-vim
yamlcode.yaml-vscode-extension
solblanco.svetle-vsce
vsceue.volar-vscode
redmat.vscode-quarkus-pro
msjsdreact.react-native-vsce

Open VSX

bphpburn.icons-vscode
tailwind-nuxt.tailwindcss-for-react
flutcode.flutter-extension
yamlcode.yaml-vscode-extension
saoudrizvsce.claude-dev
saoudrizvsce.claude-devsce
vitalik.solidity

Once the packages are accepted on the marketplaces, the publishers push an update that introduces the malicious code, then inflate their download counts to make them appear legitimate and trustworthy.

Also, artificially increasing download counts can manipulate search results, with the malicious extension appearing higher in the results, often very close to the legitimate projects it impersonates.

I’m sure it’s a mix, but I would expect fewer people that have GrapheneOS because they have a Pixel than have a Pixel because they are the only devices supported by GrapheneOS.