ProHoster > Блог > labaran intanet > Chrome 98 saki

Chrome 98 saki

Google ya bayyana sakin mai binciken gidan yanar gizo na Chrome 98. A lokaci guda kuma, ana samun tabbataccen sakin aikin Chromium kyauta, wanda ke zama tushen Chrome. An bambanta mai binciken Chrome ta hanyar amfani da tambura na Google, kasancewar tsarin aika sanarwa idan ya faru, kayayyaki don kunna abun ciki na bidiyo mai kariya (DRM), tsarin shigar da sabuntawa ta atomatik, da watsa sigogin RLZ lokacin da bincike. An shirya sakin Chrome 99 na gaba a ranar 1 ga Maris.

Canje-canje masu mahimmanci a cikin Chrome 98:

  • Mai binciken yana da nasa kantin sayar da tushen takaddun shaida na hukumomin tabbatarwa (Chrome Root Store), wanda za a yi amfani da shi maimakon shagunan waje na musamman ga kowane tsarin aiki. Ana aiwatar da kantin sayar da kwatankwacin zuwa kantin sayar da takaddun tushe mai zaman kansa a Firefox, wanda ake amfani dashi azaman hanyar haɗin farko don bincika sarkar amintaccen takaddun shaida lokacin buɗe shafuka akan HTTPS. Har yanzu ba a yi amfani da sabon ma'aji ta tsohuwa ba. Don sauƙaƙe jujjuyawar saitin ajiya na tsarin da kuma tabbatar da ɗaukar nauyi, za a sami lokacin miƙa mulki lokacin da Shagon Tushen Chrome zai haɗa da cikakken zaɓi na takaddun shaida da aka amince da su akan yawancin dandamali masu tallafi.
  • Ana ci gaba da aiwatar da shirin ƙarfafa kariya daga hare-haren da ke da alaƙa da samun albarkatu a kan hanyar sadarwa ta gida ko kuma a kan kwamfutar mai amfani (localhost) daga rubutun da aka ɗora lokacin buɗe shafin. Masu kai hari suna amfani da irin waɗannan buƙatun don kai hare-haren CSRF akan masu amfani da hanyoyin sadarwa, wuraren shiga, firintoci, mu'amalar yanar gizo na kamfanoni da sauran na'urori da sabis waɗanda ke karɓar buƙatun kawai daga hanyar sadarwar gida.

    Don kare kai daga irin waɗannan hare-hare, idan an sami damar yin amfani da wasu ƙananan albarkatu akan hanyar sadarwar cikin gida, mai binciken zai fara aika buƙatun buƙatun neman izini don saukar da irin waɗannan albarkatun ƙasa. Ana aiwatar da buƙatar izini ta hanyar aika buƙatun CORS (Cross-Origin Resource Sharing) tare da taken “Samar-Control-Request-Private-Network: gaskiya” zuwa babban uwar garken rukunin yanar gizon kafin samun damar hanyar sadarwa ta ciki ko mai gida. Lokacin tabbatar da aiki don amsa wannan buƙatar, uwar garken dole ne ta dawo da taken "Access-Control-Allow-Private-Network: gaskiya". A cikin Chrome 98, ana aiwatar da rajistan a cikin yanayin gwaji kuma idan babu tabbaci, ana nuna gargadi a cikin na'ura mai ba da hanya tsakanin hanyoyin sadarwa, amma ba a toshe buƙatar tushen tushen kanta. Ba a shirya kunna toshewa ba har sai an fito da Chrome 101.

  • Saitunan asusu suna haɗa kayan aiki don sarrafa haɗa da Ingantaccen Bincike mai aminci, wanda ke kunna ƙarin bincike don kare sirrin sirri, ayyukan mugunta da sauran barazanar kan Yanar gizo. Lokacin da kuka kunna yanayi a cikin asusun Google, yanzu za a sa ku kunna yanayin a cikin Chrome.
  • Ƙara samfuri don gano yunƙurin phishing a gefen abokin ciniki, wanda aka aiwatar ta amfani da dandalin koyon injin TFLite (TensorFlow Lite) kuma baya buƙatar aika bayanai don yin tabbaci a gefen Google (a wannan yanayin, ana aika telemetry tare da bayani game da sigar ƙirar). da lissafin ma'aunin nauyi ga kowane rukuni) . Idan an gano yunƙurin ɓarna, za a nuna mai amfani da shafin faɗakarwa kafin buɗe shafin da ake tuhuma.
  • A cikin Client Hints API, wanda ake haɓakawa azaman mai maye gurbin mai amfani-Agent mai amfani kuma yana ba ku damar zaɓin aika bayanai game da takamaiman mai bincike da sigogin tsarin (version, dandamali, da sauransu) kawai bayan buƙatar uwar garken, shine. mai yuwuwar musanya sunaye na ƙagaggun cikin jerin abubuwan gano masu bincike, bisa ga kwatanci tare da tsarin GREASE (Ƙirƙirar Ƙarfafa Tsare-tsare da Dorewa) da aka yi amfani da su a cikin TLS. Misali, ban da ''Chrome''; v = "98" da "Chromium"; v="98″' mai gano bazuwar burauzar da ba ta wanzu ba"(Ba; Browser"; v="12″" ana iya ƙarawa cikin jerin. wanda ke haifar da gaskiyar cewa ana tilasta madadin masu bincike su yi kamar su wasu mashahuran masu binciken ne don ƙetare tantancewa a kan jerin abubuwan da aka yarda da su.
  • Tun daga ranar 17 ga Janairu, Shagon Yanar Gizon Chrome ba ya karɓar ƙarin abubuwan da ke amfani da sigar 2023 na bayanan Chrome. Sabbin ƙari yanzu za a karɓi kawai tare da sigar ta uku ta bayyananniyar. Masu haɓaka add-kan da aka ƙara a baya har yanzu za su iya buga sabuntawa tare da sigar ta biyu ta bayyananniyar. An shirya cikakken ƙaddamar da sigar ta biyu na ma'anar ta don Janairu XNUMX.
  • Ƙara goyon baya ga rubutun vector masu launi a cikin tsarin COLRv1 (wani yanki na fonts na OpenType wanda ya ƙunshi, ban da glyphs vector, Layer tare da bayanin launi), wanda za'a iya amfani dashi, misali, don ƙirƙirar emoji mai launi. Ba kamar tsarin COLRv0 da aka yi a baya ba, COLRv1 yanzu yana da ikon yin amfani da gradients, overlays, da canje-canje. Tsarin kuma yana ba da ƙaramin tsari na ajiya, yana ba da ingantaccen matsewa, kuma yana ba da damar sake amfani da faci, yana ba da damar rage girman girman rubutu. Misali, Noto Color Emoji font yana ɗaukar 9MB a tsarin raster, da 1MB a tsarin vector COLRv1.85.
    Chrome 98 saki
  • Yanayin Gwaji na Asalin (fasali na gwaji waɗanda ke buƙatar kunnawa daban) suna aiwatar da API ɗin Ɗaukar yanki, wanda ke ba ku damar shuka bidiyon da aka ɗauka. Misali, ana iya buƙatar girbi a cikin aikace-aikacen yanar gizo waɗanda ke ɗaukar bidiyo tare da abubuwan da ke cikin shafin su, don yanke wasu abun ciki kafin aikawa. Gwajin Asalin yana nuna ikon yin aiki tare da ƙayyadaddun API daga aikace-aikacen da aka zazzage daga localhost ko 127.0.0.1, ko bayan yin rijista da karɓar wata alama ta musamman wacce ke aiki na ƙayyadadden lokaci don takamaiman rukunin yanar gizo.
  • Kaddarar CSS “ta ƙunshi girman-babban girman” yanzu tana goyan bayan ƙimar “auto”, wanda zai yi amfani da girman abin tunawa na ƙarshe (lokacin da aka yi amfani da shi tare da "content-visibility: auto", mai haɓakawa ba dole ba ne ya yi hasashen girman da aka yi masa). .
  • An ƙara kayan kayan AudioContext.outputLatency, ta inda zaku iya gano bayanai game da jinkirin da aka annabta kafin fitowar sauti (jinkiri tsakanin buƙatun sauti da fara sarrafa bayanan da aka karɓa ta na'urar fitarwar sauti).
  • Tsarin launi na kadarorin CSS, wanda ke ba da damar tantancewa a cikin wane nau'ikan launi za a iya nunawa daidai ("haske", "duhu", "yanayin rana" da "yanayin dare"), an ƙara siginar "kawai". don hana tilas canza tsarin canza launi don abubuwan HTML guda ɗaya. Misali, idan ka saka “div {launi-mashirin: kawai haske}”, to, jigon haske kawai za a yi amfani da shi don nau'in div, ko da mai binciken ya tilasta jigon duhu ya kunna.
  • Ƙara goyon baya don tambayoyin kafofin watsa labarai na 'tsari-tsayi' da 'bidiyo-tsauri-range' ga CSS don tantance ko allo yana goyan bayan HDR (High Dynamic Range).
  • Ƙara ikon zaɓar ko buɗe hanyar haɗin gwiwa a cikin sabon shafin, sabuwar taga, ko taga mai tasowa zuwa aikin taga.bude(). Bugu da ƙari, kaddarar taga.statusbar.visible yanzu tana dawo da “ƙarya” don faɗowa da “gaskiya” don shafuka da tagogi. const popup = taga.bude('_blank','popup=1'); // Buɗe a cikin taga popup const tab = taga.bude('_blank',,"'popup=0'); // Bude cikin shafin
  • An aiwatar da hanyar da aka tsara ta Clone () don windows da ma'aikata, wanda ke ba ku damar ƙirƙirar kwafin abubuwa masu maimaitawa waɗanda suka haɗa da kaddarorin ba kawai na ƙayyadadden abu ba, har ma da duk sauran abubuwan da abin na yanzu ya ambata.
  • API ɗin Tabbatar da Yanar Gizo ya ƙara goyan baya ga tsawaita ƙayyadaddun FIDO CTAP2, wanda ke ba ku damar saita mafi ƙarancin lambar lambar PIN da aka yarda (minPinLength).
  • Don shigar da aikace-aikacen gidan yanar gizo kadai, an ƙara bangaren Window Controls Overlay, wanda ke shimfiɗa yankin allo na aikace-aikacen zuwa gabaɗayan taga, gami da yankin take, wanda madaidaicin maɓallin sarrafa taga (rufe, rage girman, girma). ) sun fi girma. Aikace-aikacen gidan yanar gizon na iya sarrafa sarrafawa da sarrafa shigarwa na duka taga, ban da toshe mai rufi tare da maɓallin sarrafa taga.
  • Ƙara kayan sarrafa siginar zuwa WritableStreamDefaultController wanda ke dawo da abin AbortSignal, wanda za'a iya amfani dashi don dakatar da rubutawa kai tsaye zuwa WritableStream ba tare da jira su gama ba.
  • WebRTC ta cire tallafi ga tsarin yarjejeniyar maɓalli na SDES, wanda IETF ta soke shi a cikin 2013 saboda matsalolin tsaro.
  • Ta hanyar tsoho, API ɗin U2F (Cryptotoken) ba a kashe, wanda a baya aka soke shi kuma API ɗin Tabbatar da Yanar Gizo ya maye gurbinsa. U2F API za a cire gaba ɗaya a cikin Chrome 104.
  • A cikin API Directory, an soke filin shigar_browser_version, wanda aka maye gurbinsa da sabon filin pending_browser_version, wanda ya bambanta da cewa yana ƙunshe da bayanai game da nau'in burauzar, la'akari da zazzagewar amma ba a yi amfani da sabuntawa ba (watau sigar da za ta yi aiki bayan shigar da kalmar wucewa). browser ya sake farawa).
  • Zaɓuɓɓukan da aka cire waɗanda suka ba da izinin dawo da tallafi don TLS 1.0 da 1.1.
  • An inganta kayan aiki don masu haɓaka gidan yanar gizo. An ƙara shafi don kimanta aikin cache na baya-gaba, wanda ke ba da kewayawa nan take lokacin amfani da maɓallan Baya da Gaba. An ƙara ikon yin koyi da tambayoyin kafofin watsa labarai masu launin tilas. Ƙara maɓallan zuwa editan Flexbox don tallafawa kaddarorin juye-juye da juzu'i. Shafin "Change" yana tabbatar da cewa an nuna canje-canje bayan tsara lambar, wanda ke sauƙaƙa ƙaddamar da ƙananan shafuka.
    Chrome 98 saki

    An sabunta aiwatar da kwamitin bita na lambar zuwa sakin editan lambar CodeMirror 6, wanda ke inganta aikin aiki tare da manyan fayiloli (WASM, JavaScript), yana magance matsaloli tare da bazuwar bazuwar yayin kewayawa, da haɓaka shawarwarin da auto kammala tsarin a lokacin da editing code. An ƙara ikon tace fitarwa ta sunan dukiya ko ƙima zuwa rukunin kaddarorin CSS.

    Chrome 98 saki

Baya ga sabbin abubuwa da gyare-gyaren kwaro, sabon sigar yana kawar da lahani 27. Yawancin raunin da aka gano sakamakon gwajin atomatik ta amfani da AddressSanitizer, MemorySanitizer, Control Flow Integrity, LibFuzzer da kayan aikin AFL. Ba a gano wata matsala mai mahimmanci da za ta ba mutum damar ƙetare duk matakan kariya na burauza ba da aiwatar da lamba akan tsarin a wajen yanayin sandbox. A matsayin wani ɓangare na shirin bayar da ladan kuɗi don gano lahani ga sakin na yanzu, Google ya biya lambobin yabo 19 da suka kai dalar Amurka dubu 88 (kyaututtuka na $20000, lambar yabo ta $12000, lambobin yabo $7500 guda biyu, lambobin yabo $1000 guda huɗu da ɗaya kowanne na $7000, $5000, $3000.

source: budenet.ru

Add a comment