Commit Graph

1194 Commits

Author SHA1 Message Date
hackademix 83b5d491af Version bump: 11.2.5rc3. 2021-04-27 19:46:27 +02:00
hackademix dfcd35a0e2 Fixed link to guide in README. 2021-04-26 23:39:26 +02:00
hackademix 3573263483 [nscl] Minor fixes from the library. 2021-04-26 23:31:34 +02:00
hackademix 39c8a1e558 [nscl] Fixed XHTML pages broken when served with application/xml MIME type and no "object" capability. 2021-04-26 23:09:54 +02:00
hackademix cc06e86a1d [nscl] Switch early content script configuration to use /nscl/service/DocStartInjection.js. 2021-04-26 22:58:42 +02:00
Giorgio Maone 8c9db988a1
Merge pull request #184 from nikoladev/patch-1
Fix link to NoScript guide in README
2021-04-26 20:23:49 +02:00
hackademix c293ebc250 [nscl] Refactored ContentScriptOnce.js to the library. 2021-04-26 12:56:13 +02:00
nikoladev 72ce9e9317
fix link to guide
- the original linked to the second page of the forum post
- the new link is to the first page of the forum post that actually contains the guide
2021-04-19 12:49:42 +02:00
hackademix d97b2f6d18 Rename the "csspp0" capability to "unchecked_css". 2021-04-07 23:45:24 +02:00
hackademix 182cd5fcaa Minor: HTML events archive reordering. 2021-04-07 23:39:05 +02:00
hackademix da389d825f Version bump: 11.2.5rc2. 2021-04-02 22:51:00 +02:00
hackademix f7d56c30f1 Configurable "csspp0" capability to for sites where the CSS PP0 mitigation should be disabled (e.g TRUSTED). 2021-04-02 00:22:39 +02:00
hackademix fee3a23243 [nscl] Fix CSS PP0 mitigation still interfering with some WebExtensions (thanks barbaz for report). 2021-04-02 00:18:44 +02:00
hackademix 28de8bbca5 [XSS] Increased sensitivity and specificity of risky operator pre-checks. 2021-03-28 21:58:56 +02:00
hackademix 8cd56795f6 Version bump: 11.2.5rc1. 2021-03-28 09:19:35 +02:00
hackademix a176cf261b Version bump: 11.2.4. 2021-03-26 20:17:57 +01:00
hackademix 71426453e7 [nscl] Inteception of webgl context creation in OffscreenCanvas too. 2021-03-26 19:26:46 +01:00
hackademix b178613973 Fixed regression: Site Info broken by NSCL refactoring. 2021-03-26 18:26:15 +01:00
hackademix 0731e48c94 Version bump: 11.2.4rc5. 2021-03-26 18:26:15 +01:00
hackademix e0d7ad8cea [nscl] Fixed unmerged NetCSP "extra" headers always undefined. 2021-03-25 23:32:50 +01:00
hackademix c8f4d764ea HTML event atoms reorder in Mozilla sources. 2021-03-25 23:31:38 +01:00
hackademix dd41e83e56 Version bump: 11.2.4rc4. 2021-03-25 23:31:38 +01:00
hackademix f594129d73 Avoid stack trace generation for debugging purposes on release builds. 2021-03-25 00:48:48 +01:00
hackademix 8ccfecc902 More selective CSS PP0 protection, excluded on the Tor Browser where it's unneeded and easier to test/debug on dev builds. 2021-03-25 00:48:17 +01:00
hackademix cab286b316 Make isTorBrowser information available in child policy. 2021-03-25 00:19:09 +01:00
hackademix 6ddba86e9a Prevent console noise on startup with privileged tabs. 2021-03-24 22:53:54 +01:00
hackademix c30c9c5627 [nscl] More refactoring out in NoScript Commons Library. 2021-03-20 22:59:59 +01:00
hackademix 4c9ddc847a Version bump: 11.2.4rc3. 2021-03-19 23:58:10 +01:00
hackademix 6877074c79 [nscl] Switch to NSCL for messaging. 2021-03-16 01:20:36 +01:00
hackademix 20b10ff4f9 [nscl] Rollback unneded window.opener patching (thanks musonius for insight). 2021-03-16 01:04:28 +01:00
hackademix 477e6882d6 CSS PP0 mitigation: cross-site stylesheets on scriptless pages, one resource per host. 2021-03-16 00:58:52 +01:00
hackademix fd47b4dac7 Limit CSS PP0 mitigation to scriptless pages and prefetch only cross-site resources. 2021-03-15 20:14:43 +01:00
hackademix 3f2d9cfb20 Version bump: 11.2.4rc2. 2021-03-13 00:50:27 +01:00
hackademix de80b7b115 CSS resources prefetching as a mitigation against CSS PP0 (https://github.com/Yossioren/pp0). 2021-03-13 00:35:34 +01:00
hackademix 5cd6a01b5c [L10n] Updated br, de, el, es, fr, he, is, nl, pl, pt_BR, ru, sq, tr, zh_CN. 2021-03-12 12:18:29 +01:00
hackademix 354dbeabbd Fixed configuration upgrades not applied on manual updates (thanks Nan for reporting). 2021-03-11 21:52:57 +01:00
hackademix 1bfc51226c Mitigation for misbehaving pages repeating failed requests in a tight loop. 2021-02-27 23:16:56 +01:00
hackademix ae728f1d86 [UI] More understandable label for the cascading restrictions option. 2021-02-25 09:54:03 +01:00
hackademix d8b10836e6 [nscl] patchWindow improvements. 2021-02-25 09:54:03 +01:00
hackademix 5f59f65494 [nscl] Switch to NSCL's generic inclusion shell script. 2021-02-24 19:41:37 +01:00
hackademix 9e871c064d Version bump: 11.2.4rc1. 2021-02-19 21:39:22 +01:00
hackademix 4e4ea350f0 Version bump: 11.2.3. 2021-02-17 07:42:36 +01:00
hackademix a72d965121 [L10n] Purged non-inclusive terms from obsolete messages. 2021-02-17 00:00:50 +01:00
hackademix d9f774a97c Added red halo feedback in CUSTOM preset for noscript element capability. 2021-02-16 23:15:30 +01:00
hackademix ca37af400f Fixed missing red halo feedback in CUSTOM preset for inline scripts and other capabilities sometimes. 2021-02-16 23:14:21 +01:00
hackademix 7c77a1f913 Fixed race condition causing noscript elements not to be rendered sometimes. 2021-02-16 22:43:55 +01:00
hackademix 54e4671463 Version bump: 11.2.3rc1. 2021-02-16 22:41:05 +01:00
hackademix 58e37b1760 Version bump: 11.2.2. 2021-02-16 19:56:13 +01:00
hackademix 2f86a20172 Fixed typo in version checked on noscript capability update. 2021-02-16 19:53:41 +01:00
hackademix ef2b36d496 [L10n] Updated bn, br, ca, da, de, el, es, fr, he, is, it, ja, lt, mk, ms, nb, nl, pt_BR, ru, sq, sv_SE, tr, zh_CN, zh_TW. 2021-02-16 19:53:41 +01:00