InformAction Forums

Should the target be passed to the fire() in postMessage()?

Also little patch for my patch:

"thisArg instanceof HTMLCanvasElement" test should be "thisArg instanceof window[canvas]" so it catches Offscreencanvas too.

onScriptDisabled.js:50 Have lately encountered some pages with sticky-positioned headers and footers that I wanted to remove.

No idea why I thought that was the case. Should always check before I open my mouth.

Feature request:

Add sticky-position to element eraser.

Unless I'm completely mistaken, running querySelector in MutationObserver callback is likely not going to do what you hope it does as the nodes are quite not yet added to the DOM. You need to check the records.

Been looking at this function a while and didn't realize this https://github.com/hackademix/nscl/commit/b9a68f15868f493957a5e7bf0f07bd7946672329. Sigh. Oh well, never did say I understand regex ;) Anyhow... Lets tackle some error messages. Btw, can't move the call to getContext to the front because ...

Since the window from which this prototype is taken is already wrapped, it is not necessary to wrap the prototype again, nor would it even work. The removed line would simply always reduce to wrappedProto = proto. As an example: window.HTMLIFrameElement.prototype.wrappedJSObject === window.wrappedJS...

Problem with multiple patchWindow() calls - they override any previous patches made to the "framing elements". This is due to modifyFramingElements() using the getters from contentscript context where the prototypes remain original and thus any subsequent call to modifyFramingElements() wi...

You might be able to trigger it by navigating (site -> about:newtab -> site). Can reproduce that way on 87.

Two things that came in to mind when skimming through the white paper: The paper does not seem to mention what FireFox version they used, if any at all besides DeterFox and TorBrowser. Since FF85, FireFox has been doing cache partitioning , that supposedly prevents timing attacks on caches among oth...

Seems fine to have the protection as permission. However, none of the suggested renames make it any more clear whether one should check or uncheck the option to prevent this mysterious threat (not that the original tells anything either). So I assume there will be lot of questions about this in any ...

Feature request:

Advanced-tab checkbox to enable/disable PP0 protection, similarly as with XSS sanitation.


Bonus typo: (too lazy to make separate post)

nscl/content/prefetchCSSResources.js:37 "rarget"

Though I have hard time figuring out what is the use case for wrapCssAccess...

Get the same problem. Though, there are lots of pages where I see no prefetching even when I would expect it. Are all CSS resources supposed to be prefetched or what are the conditions?

This flew under my radar. Few notes: 1. window.opener is not a fresh window and _should_ always be patched before a new window can be opened (AFAIK). 2. If the opener and opened windows are not same-origin, trying to get canvas context will result in cross-origin block, whether opener is patched or...

michkov wrote: ↑Sun Nov 01, 2020 6:34 am https://content.blubrry.com/hoseasia/HoSEA014.mp3

I need to allow blubrry.com to get the mp3 to play.

For me the file plays just fine.

What permissions you need to allow for blubrry.com for the file to play? Is just media enough?