Revision 261548ff
Added by koszko about 2 years ago
| TODOS.org | ||
|---|---|---|
| 20 | 20 |
- make script bag components re-orderable (via drag&drop in options page) -- CRUCIAL |
| 21 | 21 |
- find some way not to require each chrome user to modify manifest.json |
| 22 | 22 |
- test with more browser forks (Abrowser, Parabola IceWeasel, LibreWolf) |
| 23 |
- also see if browsers based on pre-quantum FF support enough of |
|
| 24 |
WebExtensions for easy porting |
|
| 25 | 23 |
- make sure page's own csp in <head> doesn't block our scripts |
| 26 |
- find out how and make it possible to whitelist non-https urls and |
|
| 27 |
whether we can inject csp to them |
|
| 28 | 24 |
- create a repository to host scripts |
| 29 | 25 |
- enable the extension to automatically fetch script substitutes from the repo |
| 30 | 26 |
- make it possible to inject scripts to arbitrary places in DOM |
| 31 | 27 |
- make script blocking code omit those scripts |
| 32 | 28 |
- check if prerendering has to be blocked -- CRUCIAL |
| 33 | 29 |
- block prefetch |
| 34 |
- rearrange files in extension, add some mechanism to build the extension |
|
| 35 |
- all solutions to modularize js code SUCK; come up with own simple DSL |
|
| 36 |
to manage imports/exports |
|
| 30 |
- rearrange files in extension |
|
| 31 |
- supplement the build script with a makefile, also produce zipped arifacts |
|
| 37 | 32 |
- perform never-ending refactoring of already-written code |
| 38 | 33 |
- also implement support for whitelisting of non-https urls |
| 39 | 34 |
- validate data entered in settings |
| ... | ... | |
| 49 | 44 |
(unless someone suggests another good name before we do so) |
| 50 | 45 |
- add an option to disable script blocking globally |
| 51 | 46 |
- Add support to settings_query for non-standard URLs |
| 52 |
(e.g. file:// and about:)
|
|
| 47 |
(e.g. file:// and ftp://)
|
|
| 53 | 48 |
- Process HTML files in data: URLs instead of just blocking them |
| 49 |
- improve CSP injection for pathological cases like <script> before <head> |
|
| 50 |
- Fix FF script blocking and whitelisting (FF seems to be by itself repeatedly |
|
| 51 |
injecting CSP headers that were injected once, this makes it impossible to |
|
| 52 |
whielist site that was unwhitelisted before; FF also seems to be removing our |
|
| 53 |
injected script's nonce for no reason 🙁) |
|
| 54 | 54 |
|
| 55 | 55 |
DONE: |
| 56 |
- make blocking more torough -- DONE 2021-06-28 |
|
| 56 |
- find out if we can successfully use CSP to block file:// under FF -- DONE 2021-06-30 |
|
| 57 |
- come up with own simple DSL to manage imports/exports -- DONE 2021-06-30 |
|
| 58 |
- add some mechanism to build the extension -- DONE 2021-06-30 |
|
| 59 |
- see if browsers based on pre-quantum FF support enough of -- DONE 2021-06-29 |
|
| 60 |
WebExtensions for easy porting (no, those we know dropped the support) |
|
| 61 |
- make blocking more thorough -- DONE 2021-06-28 |
|
| 57 | 62 |
- mind the data: urls -- CRUCIAL |
| 58 | 63 |
- employ copyright file in Debian format -- DONE 2021-06-25 |
| 59 | 64 |
- find out what causes storage sometimes not to get initialized under IceCat 60 -- DONE 2021-06-23 |
Also available in: Unified diff
emply an sh-based build system; make some changes to blocking