I understand the importance of taking measures to prevent Greasemonkey scripts from performing anything malicious with data stored in cookies. However, I believe that malicious cookie-related activity on the part of Greasemonkey scripts can be prevented without the need for Greasemonkey to deny its scripts access to cookies. It should also be noted that some users may not be able to tell which scripts perform malicious activity with cookies. A number of users would not know which scripts should be granted or denied access to cookies. Therefore, features in which users are asked to select security preferences might not be effective. Still, there may not be any easy solutions to this issue, and I consider your idea worth considering.

Thanks again,

J.K.

It’s an issue for GreaseMonkey users that userscripts can contain code for retrieving some persons cookie data.
My suggestion about this problem is that the maker of GreaseMonkey should disable all access to cookies. Aldo I really don’t like this, this is the best and secure way.
BUT, there should be an option made that allows the users self to choose to give a particular script access to cookies. This can be nicely done in the same way as includes and excludes for every script apart is done.
This way all scripts are prevented from access to cookies and only trusted scripts are allowed.

Please check my scripts for a nice set off userscripts framework: http://userscripts.org/users/31497/scripts

gr J