Iyo Yemahara Software Foundation yakaunza iyo JShelter purojekiti, iyo inogadzira browser yekuwedzera-yekudzivirira kubva mukutyisidzira kunomuka kana uchishandisa JavaScript pamawebhusaiti, kusanganisira yakavanzika chitupa, yekutevera mafambiro uye kuunganidzwa kwe data remushandisi. Iyo kodhi yeprojekiti yakagoverwa pasi peGPLv3 rezinesi. Iyo yekuwedzera inogadzirirwa Firefox, Google Chrome, Opera, Brave, Microsoft Edge uye mamwe mabhurawuza anoenderana neChromium injini.
Chirongwa ichi chiri kuvandudzwa sechirongwa chemubatanidzwa chinopihwa mari neNLnet Foundation. Giorgio Maone, mugadziri weNoScript yekuwedzera, pamwe nevavambi veJ++ chirongwa uye vanyori veJS-Shield uye JavaScript Restrictor akawedzera, akabatanawo nekuvandudzwa kweJShelter. Iyo JavaScript Restrictor yekuwedzera inoshandiswa sehwaro hwepurojekiti nyowani.
JShelter inogona kufungidzirwa semhando ye firewall yeJavaScript programming interfaces inowanikwa kune mawebhusaiti uye webhu maapplication. Iyo yekuwedzera inopa mana mazinga edziviriro, pamwe neinochinjika dhizaini modhi yekuwana iyo API. Level zero inobvumira zvachose kupinda kune ese maAPIs, yekutanga inosanganisira kuvharika kudiki kusingakanganise kushanda kwemapeji, yechipiri nhanho zviyero pakati pekuvhara uye kuenderana, uye chikamu chechina chinosanganisira kuvharira kwakasimba kwezvese zvisina basa.
API inovharira marongero inogona kusungirirwa kune yega saiti, semuenzaniso, chengetedzo inogona kusimbiswa kune mamwe mawebhusaiti, uye yakaremara kune vamwe. Iwe unogona zvakare kusarudza kuvharira dzimwe nzira dzeJavaScript, zvinhu, zvivakwa, uye mabasa, kana kushandura kudzoka kukosha (semuenzaniso, kuburitsa ruzivo rwenhema nezve system). Chimwe chinhu chakasiyana iNBS (Network boundary shield) modhi, isingatenderi mapeji kushandisa bhurawuza semumiriri pakati pemanetiweki ekunze neemunharaunda (zvese zvikumbiro zvinobuda zvinobvumwa nekuongororwa).
MaAPI akavharirwa kana kurambidzwa:
- window.Date, window.performance.now(), window.PerformanceEntry, Event.prototype.timeStamp, Gamepad.prototype.timestamp uye VRFrameData.prototype.timestamp - nguva chaiyo inobuda inogona kushandiswa kuziva nekuita side-channel kurwisa .
- HTMLCanvasElement (canvas.toDataURL(), canvas.toBlob(), CanvasRenderingContext2D.getImageData, OffscreenCanvas.convertToBlob()) - inoshandiswa kuona maficha eiyo graphics subsystem pakuziva mushandisi.
- Audiobuffer uye Analysernode (Audiobuffer.getChanneldata (), Audiobuffer.copyfromchannel (), analysernode.getBytimedomaindata ()
- WebGLRenderingContext - kuzivikanwa kuburikidza nekuongorora maficha eiyo grafiti stack uye GPU.
- MediaDevices.prototype.enumerateDevices - kuzivikanwa nekuwana paramita nemazita ekhamera nemakrofoni.
- navigator.deviceMemory, navigator.hardwareConcurrency - kuwana ruzivo nezve hardware.
- XMLHttpRequest (XHR) - inotamisa yakaunganidzwa system ruzivo kune yekunze sevha mushure mekunge peji razara.
- ArrayBuffer - kuita microarchitectural Specter kurwisa.
- WebWorker (window.Worker), SharedArrayBuffer (window.SharedArrayBuffer) - kuita kurwisa kunoongorora kunonoka kana uchiwana data.
- Geolocation API (navigator.geolocation) - kuwana ruzivo rwenzvimbo (iyo yekuwedzera inobvumidza iwe kukanganisa data rakadzoserwa).
- Gamepad API (navigator.getGamepads()) ndechimwe chezviratidzo zvinotarisa kuvapo kwegamepad muhurongwa.
- Virtual Reality API, Yakasanganiswa Reality API - kushandiswa kweiyo chaiyo chaiyo mudziyo paramita yekuzivikanwa.
- window.name - cross-site leaks.
- navigator.sendBeacon - inoshandiswa pawebhu analytics.
Source: opennet.ru