In the context of the recent GDPR discussions and transparency in general, could you consider listing the external services used in the README? I see Google servers are used to serve the favicons.
Who operates meta-grabber.herokuapp.com? It it your own app or a third-party?
Looking at the code I assume this extension also loads oembed images in the user browser without proxy?