-
Notifications
You must be signed in to change notification settings - Fork 11
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Which Web APIs should we be looking at? #56
Comments
SharedWorker, SharedWorkerGlobalScope and the likes. Why? See the complete list of functions available to workers: Broadcast Channel API and Channel Messaging API available in workers. |
Generic Sensor API: Security and privacy considerations The leaking battery: A privacy analysis of the HTML5 Battery Status API [PDF] Links found here. |
@Atavic Great suggestions, thank you! I'm reading more about each one and creating the interceptions. New ones that are available in version
More details: What is detected? |
If I had to vote for one, it would be window.requestAmimationFrame. I have encountered a few web sites with unneeded and poorly written animations that really slow things down. You might want to take a look at the Web API Manager extension. The author no longer maintains it, but he has grouping of lite settings you could consider detecting by default. I used it before I came across Luminous. |
Currently we can identify and/or block the following Web APIs:
Update: Including Battery Status, Gamepad API, HTTP headers and NavigatorID.
Update 2: Including requestAnimationFrame.
See more details at: What is detected?
Question: What other web APIs should we intercept?
Mozilla has incredible documentation on the various existing Web APIs: MDN: Web APIs
Ideally we could try to identify all. But this is not necessarily the best approach since some of them may not cause damage that would justify the block and would confuse even more on what to block or not.
I've been thinking about looking at these two:
When I leave the website, will you still collect data about me? why?
Is it possible for a website to be transcribing my conversations when my microphone is enabled? 🤔
The text was updated successfully, but these errors were encountered: