Age | Commit message (Collapse) | Author | |
---|---|---|---|
2021-09-21 | Merge branch 'master' into jahoti-update | jahoti | |
2021-09-14 | use default settings that only contain a demo script (the rest is available ↵ | Wojtek Kosior | |
through Hydrilla) | |||
2021-09-13 | rename the extension to "Haketilo" | Wojtek Kosior | |
2021-09-06 | re-enable sanitizing of data: URLs and also sanitize intrinsics on non-HTML ↵ | Wojtek Kosior | |
pages where CSP doesn't work | |||
2021-09-06 | Incorporate test suite from jahoti branch | jahoti | |
2021-09-01 | add styling for popup page\n\nThis does not include styling for contents of ↵ | Wojtek Kosior | |
the import dialog | |||
2021-08-27 | reset CSS rules | Wojtek Kosior | |
2021-08-23 | use StreamFilter under Mozilla to prevent csp <meta> tags from blocking our ↵ | Wojtek Kosior | |
injected scripts | |||
2021-08-06 | Facilitate installation of scripts from the repository | Wojtek Kosior | |
This commit includes: * removal of page_info_server * running of storage client in popup context * extraction of some common CSS to a separate file * extraction of scripts import view to a separate file * addition of a facility to conveniently clone complex structures from DOM (in DOM_helpers.js) * addition of hydrilla repo url to default settings * other minor changes and of course changes related to the actual installation of scripts from the repo | |||
2021-08-05 | enable modularization of html files | Wojtek Kosior | |
2021-07-20 | Merge rebranding to "Hachette" | Wojtek Kosior | |
2021-07-20 | Merge commit 'ecb787046271de708b94da70240713e725299d86' | Wojtek Kosior | |
2021-07-19 | Change the icon | jahoti | |
2021-07-19 | Refer to the extension consistently as "Hachette" and remove TODOS.org | jahoti | |
from the copyright file | |||
2021-07-16 | Use URL-based policy smuggling | jahoti | |
Increase the power of URL-based smuggling by making it (effectively) compulsory in all cases and adapting a <salt><unique value><JSON-encoded settings> structure. While the details still need to be worked out, the potential for future expansion is there. | |||
2021-07-12 | merge jahoti into master | Wojtek Kosior | |
2021-07-12 | Stop using the nonce consistently for a URL | jahoti | |
Nonces are now randomly generated, either in the page (for non-HTTP(S) pages) or by a background module which stores them by tab and frame IDs. In order to support the increased variance in nonce-generating methods and allow them to be loaded from the background, handle_page_actions is now invoked separately according to (non-)blocking mechanism. | |||
2021-06-30 | emply an sh-based build system; make some changes to blocking | Wojtek Kosior | |
2021-06-28 | License script-blocking techniques from NoScript in machine-readable format. | jahoti | |
In-page blocking now works on Firefox, and JavaScript/data- URLs are properly blocked to ensure no JavaScript leaks in through backdoors. Blocking of HTML/XML data: urls should be refined (eventually) to align with current practice for pages in general. Also, script-blocking is now filtered by nonce, making it possible (albeit perhaps not desirable) to inject scripts before the DOM is complete. | |||
2021-06-26 | remove mnetion of LGPL from javascript exception to the GPL | Wojtek Kosior | |
2021-06-25 | make it clear "A" license contains text from BSD license with its own copyright | Wojtek Kosior | |
2021-06-25 | gather all copyright info in 'copyright' file | Wojtek Kosior | |