Anyone have any more information about (or even a source for) "Google's Chromium security team was more responsive and removed Keychain integration for Chrome noting that it could likely not be solved at the application level"?
Is this going to happen in an upcoming stable release? What is it being replaced with?
That does seem a bit strange. The Chrome devs have long taken the position that there's no point trying to encrypt local copies of passwords. You can see a very long discussion about it here where Chrome devs argue that it's pointless: https://news.ycombinator.com/item?id=6165708
The comments by the chrome security tech lead would suggest that they wouldn't view this keychain issue as a security flaw.
So I don't see why they would bother removing keychain integration. What is the replacement going to be? A password file encrypted with the password "peanuts"?[1]
Is this going to happen in an upcoming stable release? What is it being replaced with?