Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[iOS] - Block loading of JS urls from external apps #42795

Closed
3 of 5 tasks
Brandon-T opened this issue Dec 10, 2024 · 0 comments
Closed
3 of 5 tasks

[iOS] - Block loading of JS urls from external apps #42795

Brandon-T opened this issue Dec 10, 2024 · 0 comments
Assignees
@Brandon-T
Labels
OS/iOS Fixes related to iOS browser functionality priority/P2 A bad problem. We might uplift this to the next planned release. QA/Yes release-notes/exclude security

Comments

@Brandon-T
Copy link

Description

  • We should block loading external javascript:// URLs

Steps to reproduce

  1. Open Safari
  2. Load javascript:// URL
  3. Brave opens and executes the JS

Actual result

  • Brave opens and executes the JS

Expected result

  • URL Bar should show about:blank#blocked or the script should NOT execute

Reproduces how often

Easily reproduced

Brave version

Any

Device/iOS version

All

Affected browser versions

  • latest AppStore
  • latest TestFlight
  • previous TestFlight

Reproducibility

  • with Brave Shields disabled
  • in the latest version of mobile Safari

Miscellaneous information

No response
@Brandon-T Brandon-T added OS/iOS Fixes related to iOS browser functionality QA/Yes release-notes/exclude labels Dec 10, 2024
@Brandon-T Brandon-T self-assigned this Dec 10, 2024
@Brandon-T Brandon-T mentioned this issue Dec 10, 2024
Merged
24 tasks
@jamesmudgett jamesmudgett added security priority/P2 A bad problem. We might uplift this to the next planned release. labels Dec 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Brandon-T Brandon-T

Labels
OS/iOS Fixes related to iOS browser functionality priority/P2 A bad problem. We might uplift this to the next planned release. QA/Yes release-notes/exclude security
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jamesmudgett @Brandon-T