HTTPS Everywhere tries to load a library with an empty name
The NSS.initialize
function, called from src/components/ssl-observatory.js
with an empty argument, is trying to load a library with an empty name.
This is possibly causing a DLL hijacking vulnerability in Tor Browser (see legacy/trac#12736 (moved)).