> > The one's linked to from the FSF use libre JavaScript... > > I know that. I also do a little JS programming myself but that is not > important. LibreJS is just as good as 'free software' which may send packets > to Amazon. I don't see myself auditing every JavaScript code on every > non-chached HTTP request just because it is open for evaluation. So this > basically still comes down to enforcing trust. The more I look, the more I > think we need a technology which does not in any way require from a layman > user to trust anybody. Maybe we should open a new thread.
Yes, JavaScript management is still broken and needs a solution. The simplest solution, according to the FSF (and I agree) is to package all the JavaScript for a given site as its own WebExtension, and package that WebExtension for a given distro in that distro's package manager. Package managers already provide extensions for other programs, such as Pidgin, Emacs and Firefox. This would complement/go in line with already-existing WebExtensions which do almost the same thing. What is being proposed is basically a more thorough version of things like Reddit Enhancement Suite. <code>apt install webjs-lutim apt install webjs-vault apt install webjs-modernpaste-fedora apt install webjs-liberapay apt install webjs-etherpad-riseup apt install webjs-ytdlweb-youtube </code> -- Caleb Herbert OpenPGP public key: http://bluehome.net/csh/pubkey
signature.asc
Description: This is a digitally signed message part
