summaryrefslogtreecommitdiff
path: root/src/content
Commit message (Collapse)AuthorAgeFilesLines
* Catch SecurityException thrown on cross-origin wrappedJSObject access.hackademix2019-04-081-1/+6
|
* Limit wrappedJSObject usages to compatible browsers.hackademix2019-04-013-3/+3
|
* Remove usage of non-standard Array methods.hackademix2019-02-011-3/+3
|
* Safer cookie-less check for unrestricted tabs from subdocuments.hackademix2018-12-271-4/+9
|
* Fix for unrestricted tabs not affecting about:blank subframes (issue #48).hackademix2018-12-262-3/+17
|
* Fix restored media element from placeholder not loading previously blocked ↵hackademix2018-12-061-3/+3
| | | | content.
* Fixed meta refresh inside <NOSCRIPT> emulation breaking Firefox's built-in ↵hackademix2018-11-171-18/+13
| | | | refresh blocking.
* Fixed potential race condition in per-tab configuration cookie hack.hackademix2018-10-141-3/+4
|
* Use cookie instead of window.name as a tab-configuration hack.hackademix2018-10-131-20/+9
|
* Set tab restrictions status across all frames.hackademix2018-10-121-9/+5
|
* FTP directory UI emulation on script-disabled domains.hackademix2018-09-261-0/+88
|
* Better IPV6 support.hackademix2018-09-102-8/+21
|
* Streamlined child policy content scripts.hackademix2018-09-103-9/+8
|
* Fix for various content script timing related issues.hackademix2018-09-092-4/+3
|
* Prevent multiple CSP entries to be injected in the DOM on each reload if ↵hackademix2018-09-091-4/+2
| | | | scripting is disabled.
* More efficient window.name persistence for tab-scoped permissions.hackademix2018-09-081-30/+34
|
* Saner message dispatching.hackademix2018-09-081-2/+1
|
* Work-around for a potential race condition in message handling on extension ↵hackademix2018-09-051-0/+5
| | | | updates.
* Ensure we remove the HEAD element parent of our META CSP policy only if we ↵hackademix2018-09-041-2/+3
| | | | created it.
* Work-around for CSP not being honored when the HEAD element has not been ↵hackademix2018-09-043-35/+15
| | | | inserted yet.
* Better file: protocol support.hackademix2018-09-044-20/+66
|
* Full-page placeholders for embedding documents.hackademix2018-09-032-0/+16
|
* Fix fallback scripts when ServiceWorkers are unavailablePeter Wu2018-08-301-6/+6
| | | | | | | ServiceWorkers are not available in private browsing mode (and can be disabled otherwise via about:config), be sure to check its availability. Otherwise fallback scripts are not invoked which prevents redirections in <noscript> tags from being executed (as observed with t.co).
* Reload-less service worker busting.hackademix2018-08-281-0/+10
|
* Further CSP refactoring and removal of obsolete fallbacks.hackademix2018-08-278-199/+200
|
* Let content script inject failsafe CSP in the DOM.hackademix2018-08-272-2/+35
|
* Hotfix for some possible reload loops before refactoring CSP management.hackademix2018-08-251-1/+0
|
* Fixed typo causing accidental permissions/status mismatches being checked ↵hackademix2018-08-231-1/+1
| | | | only while pages are still loading (thanks skriptimaahinen).
* More coherent wrapper around the webex messaging API.hackademix2018-08-222-14/+4
|
* Fixed possible surprises in background script message handling.hackademix2018-08-212-4/+4
|
* Removed all references to RequestUtil.js and dependancies.hackademix2018-08-183-16/+20
|
* Hack: use top.name to store per-tab content-side configuration (e.g. ↵hackademix2018-08-171-1/+41
| | | | unrestricted tab status).
* Policy serialization using the contentScripts API.hackademix2018-08-163-59/+85
|
* Improved support for debugging code removal in releases.hackademix2018-08-013-3/+3
|
* Fixed updating NoScript reloads tabs with revoked temporary permissions.hackademix2018-08-011-2/+6
|
* Fixed browser action icon not being updated on BF cache navigation.hackademix2018-07-281-4/+10
|
* Fixed regression in NOSCRIPT elements emulation.hackademix2018-07-281-8/+7
|
* Fixed some video streams not playing anymore.hackademix2018-07-281-1/+1
|
* Fixed window.stop() called in empty suframes.hackademix2018-07-281-1/+1
|
* Disable scripting in HTML-embedding objects where webglHook cannot run, if ↵hackademix2018-07-263-4/+4
| | | | webgl not allowed.
* More edge cases covered in dynamic script injection.hackademix2018-07-262-10/+6
|
* Fixed infinite reload loops on scripting permissions mismatches.hackademix2018-07-251-6/+12
|
* Work-around for serviceWorker loads bypassing webRequest.hackademix2018-07-241-14/+38
|
* More reliable handling of edge startup cases.hackademix2018-07-221-6/+23
|
* Fixed dynamic script injection failing sometimes with "No matching message ↵hackademix2018-07-221-2/+7
| | | | handler" error.
* Prevent multiple canScript content messages during the same page load.hackademix2018-07-201-1/+9
|
* Replaced unicode glyphs missing on some platforms and in the Tor Browser.hackademix2018-07-202-2/+3
|
* Fixed regression breaking meta refreshes with relative URLs.hackademix2018-07-161-1/+1
|
* Completed fix for quoted URLs confusing meta refresh emulation.hackademix2018-07-161-2/+4
|
* Fixed meta-refresh emulation getting confused by quoted URLs.hackademix2018-07-121-1/+1
|