Age | Commit message (Collapse) | Author | |
---|---|---|---|
2021-07-12 | Stop using the nonce consistently for a URL | jahoti | |
Nonces are now randomly generated, either in the page (for non-HTTP(S) pages) or by a background module which stores them by tab and frame IDs. In order to support the increased variance in nonce-generating methods and allow them to be loaded from the background, handle_page_actions is now invoked separately according to (non-)blocking mechanism. | |||
2021-07-11 | Remove redundant nonce-based filtering in the script suppressor | jahoti | |
2021-07-06 | show some settings of the current page in the popup | Wojtek Kosior | |
2021-07-02 | move parsing of url with targets to misc.js | Wojtek Kosior | |
2021-06-30 | refactor 3 miscellaneous fnctionalities to a their single own file | Wojtek Kosior | |
2021-06-30 | emply an sh-based build system; make some changes to blocking | Wojtek Kosior | |
2021-06-28 | Index two new files intended for the previous commit. | jahoti | |
2021-06-28 | License script-blocking techniques from NoScript in machine-readable format. | jahoti | |
In-page blocking now works on Firefox, and JavaScript/data- URLs are properly blocked to ensure no JavaScript leaks in through backdoors. Blocking of HTML/XML data: urls should be refined (eventually) to align with current practice for pages in general. Also, script-blocking is now filtered by nonce, making it possible (albeit perhaps not desirable) to inject scripts before the DOM is complete. | |||
2021-06-25 | gather all copyright info in 'copyright' file | Wojtek Kosior | |
2021-06-18 | when possible inject CSP as http(s) header using webRequest instead of ↵ | Wojtek Kosior | |
adding a <meta> tag | |||
2021-06-14 | change licenses | Wojtek Kosior | |
2021-05-13 | utilize CSP for blocking | Wojtek Kosior | |
2021-05-12 | use unique hashes when smuggling whitelist setting | Wojtek Kosior | |
2021-05-12 | stop using js modules | Wojtek Kosior | |
2021-05-10 | initial commit | Wojtek Kosior | |