I just thought of another way that GM might be vulnerable to attack. Suppose I have an extension or script that redefines the GM_ functions that GM exports. If that extension gets loaded after GM, I think it can hijack the GM_ functions. Is that correct? -- Scott