guix - Wojtek's customized Guix

about summary refs log tree commit diff

Branch	Commit message	Author	Age
koszko	Allow unauthorized `guix pull`	W. Kosior	5 weeks
koszko-scripts	Add `koszko-vpn' branch.	W. Kosior	2 weeks

p'>AgeCommit message (Collapse)Author 2021-09-06re-enable sanitizing of data: URLs and also sanitize intrinsics on non-HTML ↵Wojtek Kosior pages where CSP doesn't work 2021-09-04fix script blocking bug under ChromiumWojtek Kosior 2021-09-04merge changes before version 0.1Wojtek Kosior 2021-09-03disable payload injection on non-html pagesWojtek Kosior 2021-09-02implement rethinked <meta> tags sanitizing approachWojtek Kosior This has not been tested yet. Additionally, functionality for blocking of `data:' urls needs to be re-enabled. 2021-09-02enable toggling of global script blocking policy\n\nThis commit also ↵Wojtek Kosior introduces `light_storage' module which is later going to replace the storage code we use right now.\nAlso included is a hack to properly display scrollbars under Mozilla (needs testing on newer Mozilla browsers). 2021-08-27add support for `ftp://' protocolWojtek Kosior 2021-08-27enable whitelisting of `file://' protocol\n\nThis commit additionally also ↵Wojtek Kosior changes the semantics of triple asterisk wildcard in URL path. 2021-08-26improve signing\n\nSignature timestamp is now handled in a saner way. Sha256 ↵Wojtek Kosior implementation is no longer pulled in contexts that don't require it. 2021-08-23use StreamFilter under Mozilla to prevent csp <meta> tags from blocking our ↵Wojtek Kosior injected scripts 2021-08-20sanitize `<meta>' tags containing CSP rules under ChromiumWojtek Kosior This commit adds a mechanism of hijacking document when it loads and injecting sanitized nodes to the DOM from the level of content script. 2021-08-18remove unneeded policy-related cosole messages; restore IceCat 60 compatibilityWojtek Kosior 2021-08-18implement smuggling via cookies instead of URLWojtek Kosior 2021-08-14merge facility to install from HydrillaWojtek Kosior 2021-08-14Revert changes to content/main.js to commit 25817b68c*jahoti It turns out modifying the CSP headers in meta tags has no effect. 2021-08-06Facilitate installation of scripts from the repositoryWojtek Kosior This commit includes: * removal of page_info_server * running of storage client in popup context * extraction of some common CSS to a separate file * extraction of scripts import view to a separate file * addition of a facility to conveniently clone complex structures from DOM (in DOM_helpers.js) * addition of hydrilla repo url to default settings * other minor changes and of course changes related to the actual installation of scripts from the repo 2021-08-02[UNTESTED- will test] Add filtering for http-equiv CSP headersjahoti