1. 08 Mar, 2018 1 commit
  2. 02 Mar, 2018 1 commit
  3. 01 Mar, 2018 1 commit
  4. 26 Feb, 2018 1 commit
  5. 24 Feb, 2018 1 commit
  6. 22 Feb, 2018 1 commit
  7. 21 Feb, 2018 3 commits
    • boklm's avatar
    • Georg Koppen's avatar
      Release preparations for 8.0a2 · b3fa8c1c
      Georg Koppen authored
      Changelog update and versions bump
      b3fa8c1c
    • Richard Pospesel's avatar
      Bug 15599: Range requests used by pdfjs are not isolated to URL bar domain · 7db15759
      Richard Pospesel authored
      After much debugging and investigation, it seems that the required
      information needed to drive the first-party domain cannot be accessed in
      the XmlHttpRequest creation path.  The JS context the part of pdf.js making
      the range requests runs with does not have a reference to parent window and
      associated LoadInfo information (which includes the requesting first-party
      domain).
      
      To fix the issue, we can easily disable support for range-based requests
      via the pdfjs.disableRange property.  However, the side-effect here is
      that pages can not be read as they load; the entire pdf must be
      downloaded before it can be read and interacted with.
      
      This patch updates each platforms extension-overrides.js to change this
      pref.
      7db15759
  8. 19 Feb, 2018 2 commits
    • Georg Koppen's avatar
      Bug 25000: Add [System+Principal] to the NoScript whitelist · fefb117a
      Georg Koppen authored
      We need to whitelist `[System+Principal]` for functioning settings
      frames of WebExtensions on the about:addons page. On higher security
      slider levels this is broken otherwise.
      
      To quote Giorgio Maone (see: #25000 comment:14):
      
      "The Tor Browser enforces permissions cascading, and in the Add-ons
      Options window the top frame is about:addons, whose principal's origin
      is [System+Principal]. Since this origin is omitted from Tor Browser's
      version of NoScript mandatory whitelist, the top site by default is
      considered forbidden, cascading down script blocking to the
      WebExtension's subframe."
      fefb117a
    • Georg Koppen's avatar
      Bug 24614: Bump meek tag for moat feature · 86ea6719
      Georg Koppen authored
      86ea6719
  9. 16 Feb, 2018 1 commit
  10. 08 Feb, 2018 2 commits
  11. 02 Feb, 2018 2 commits
  12. 01 Feb, 2018 1 commit
  13. 24 Jan, 2018 1 commit
  14. 19 Jan, 2018 1 commit
  15. 18 Jan, 2018 4 commits
  16. 17 Jan, 2018 3 commits
  17. 16 Jan, 2018 5 commits
  18. 09 Jan, 2018 2 commits
  19. 22 Dec, 2017 1 commit
  20. 19 Dec, 2017 1 commit
  21. 18 Dec, 2017 3 commits
  22. 13 Dec, 2017 1 commit
  23. 07 Dec, 2017 1 commit