InformAction Forums

No, there is no option specifically for blocking Google sign-in popups. NoScript is a security tool, not an annoyance remover, it's not really designed for that. It might be possible to stop that popup on some sites by blocking active content from accounts.google.com, but you'd get better and more c...

Noticed the NoScript version in Mullvad Browser has changed from the stable releases to a x.x.x.1984 channel distributed via torproject.org? What channel is this? If it's a Tor/Mullvad Browser specific modified version: - What are the modifications compared to "stock" NoScript? - Would it ...

To prevent the permission "inheritence" I was questioning, I think I need to select the "untrusted" tab on that pane. That's unlikely to make any difference. The tabs are just to select which preset to customize. Changing the active tab does not change any setting. NoScript does...

Fixed in latest development build? -

https://noscript.net/getit/#devel wrote:v 13.5.10.901
============================================================
x Fixed high-contrast regression (thanks Laurens for
reporting)

When this issue occurs, do you see anything related in the Browser Console? (Ctrl-Shift-J, and select "Multiprocess (Slower)" if it's not already selected)
(if you don't know what's related, turn off CSS warnings and post everything else you see)

Like what can the attacker get from you if there successful? Without knowing internal details of reCAPTCHA and how vulnerable it is to XSS, no way to be sure. The theoretical maximum would be anything reCAPTCHA might have, for example: access to your Google account if you're signed in to Google, or...

Can confirm the XSS warning. URL: https://vulnona.com/game/map/ Browser Console messages: [NoScript] [InjectionChecker] return JSON.parse(JSON.stringify(this)) /**/ DUMMY_EXPR has been flagged as dangerous JS (e() [NoScript] [InjectionChecker] JavaScript Injection in ///recaptcha/api2/anchor?ar=1&am...

TOPAN wrote: ↑Mon Jan 12, 2026 6:35 pm Sorry, never mind, already solved it using Stylus extention

What Stylus style did you come up with? If you could please post it here, it would help for anyone else seeking the same sort of thing. Thanks.

NoScript permissions don't have that level of granularity. NoScript is a security tool. In NoScript's trust model, either you trust a site or you don't. Since a malicious site could easily put malicious resources at any path, trusting by path prefix in this model would give a false sense of security...

Now that I've worked out how to install a particular version of NoScript, it should be possible to ascertain which was the first version to cause the problem. If I can do this then I will post back with further info. Narrowing it down to a specific old development build can provide more insight tha...

Browser Console messages: [NoScript] [InjectionChecker] wiki/USS_William_D._Porter_(DD-579) /**/ DUMMY_EXPR has been flagged as dangerous JS (_() [NoScript] [InjectionChecker] JavaScript Injection in ///wiki/USS_William_D._Porter_(DD-579) function anonymous( ) { wiki/USS_William_D._Porter_(DD-579) /...

NoScript latest development build now has: NoScript Options > Advanced, "Automatically reload affected pages when permissions change"

There isn't currently a setting for this. It used to be configurable in NoScript Classic, and bringing back that configurability in NoScript Webext has been requested a number of times. Moving this thread to NoScript Development as a RFE

What version of NoScript? Could you please post a screenshot or picture of the mysterious 'm'? Does Firefox for Android provide a way you can check which font is in used for rendering this 'm'? If the 'm' is showing in the "Match HTTPS content only" padlock button: Do you see the 'm' when ...

Removed the email address. We don't give email support, but this being a public forum there are surely bad bots looking to harvest email addresses for spamming and other nefarious purposes. I was unable to reproduce this issue: Firefox 146, NoScript 13.5.1.901, allowing the following sites and the &...