The metadata Firefox is sending to Google about the unsigned binaries or binaries signed by an unstrusted party include [1]:<p>- The target URL from which the file was downloaded, its referrer URL and any URLs in the redirect chain.<p>- The SHA-256 hash of the contents of the file.<p>Because of privacy concerns I would rather this feature not be opt-out.<p>[1] <a href="https://wiki.mozilla.org/Security/Features/Application_Reputation_Design_Doc" rel="nofollow">https://wiki.mozilla.org/Security/Features/Application_Reput...</a>