Stable AMO Version, see changelog for details.
Cross-browser NoScript on the chrome web store
Supported browsers: Firefox (Desktop and Mobile on Android), SeaMonkey, Tor Browser (where it is built-in), Chromium/Chrome.
Other browsers based on Gecko versions >= 45 might work, but are not tested.
Direct download
You can get latest stable version here, too, using this
direct download link for NoScript 10.6.1
To install, just drag and drop it onto your address bar.
v 10.6.1 ============================================================= x Make RequestGuard's header processing synchronous as needed x Fixed inconsistencies handling browser-internal URLs x Fixed resetting options works just once per session (defaults reference current settings) - issue #69 x [Locale] Updated Transifex-managed locales (de, fr, it, tr, nl) v 10.6 ============================================================= x Limit wrappedJSObject usages to compatible browsers x [Chromium] Merged chromium branch (unified code base) x [Locale] Updated Transifex-managed locales x Updated TLDs v 10.2.5 ============================================================= x [XSS] Improved detection of privileged origins (fixes an about:tor to DuckDuckGo false positive) v 10.2.4 ============================================================= x Improved prompts layout (thanks Ton for suggestion) x Improved unscanned POST blocking v 10.2.3 ============================================================= x [l10n] Updated Transifex-managed locales x Fixed POST searches from the url bar causing XSS warnings x Fixed popup top buttons not visible in high contrast appearance mode (thanks pjaworski for reporting) x Optimized popup layout initialization v 10.2.2 ============================================================= x [L10n] Updated Transifex-managed locales + Cascading top document's restrictions to subdocuments is now an option in the General section and defaults to true on the Tor Browser only + "Scan uploads for potential cross-site attacks" and "Ask confirmation for cross-site POST requests which could not be scanned" options: in Tor Browser default false and true, respectively, as a work-around for mozbug 1532530 + [Tor] "Override Tor Browser Security Level preset" option + [Tor] Selective handling of Tor Browser specific settings x Updated TLDs x [XSS] Updated event names x Safer cookie-less check for unrestricted tabs from subdocs x [Build] Easier version bumps to next rc (build.sh bump rcX) x Fixed unrestricted tabs not affecting about:blank subframes (issue #48, thanks musonius for reporting) x [XSS] Updated known HTML events lists + [Locale] Added sv_SE (by Jonatan Nyberg)
If you find any problem installing it, this FAQ may help.
You can still download NoScript "Classic" (5.1.9) for Palemoon, Seamonkey, Waterfox and possibly other "vintage" (pre-Gecko 57) Firefox forks here: we'll do our best to provide security fixes as long as supporting browser still guarantee their own security updates.
Notice: you may need to open about:config and set your xpinstall.signatures.required preference to false in order to install NoScript 5.x, since Mozilla doesn't support signatures for legacy add-ons anymore. If you're using a non ESR Firefox, you may also need this hack.
v 5.1.9 ============================================================= x Fixed automatic reload bug (thanks ThomasW and barbaz for reporting)
Users of Firefox 44 and below are urged to upgrade their very unsafe browser. For those few who can't,
- latest NoScript version compatible with Gecko 46 - Gecko 56 is 5.1.x;
- latest NoScript version compatible with Gecko 13 - Gecko 45 is 2.9.0.14;
- latest NoScript version compatible with Gecko 1.9 - Gecko 12 is 2.9.0.1rc1;
- latest NoScript version compatible with Gecko < 1.9 is 1.10.
Development version
If you're brave enough and you need a specific feature or fix not released yet, or you simply
want to provide feedback before official release, you may want try this
"Quantum" NoScript 10.6.1rc1 development build
Here, if you need it, the "Classic" NoScript 5.1.9rc1 development build for browsers based on Gecko 56 and below. Please notice you may need to open about:config and set your xpinstall.signatures.required preference to false in order to install, since Mozilla doesn't support signatures for legacy add-ons anymore.
Starting with NoScript 10.1.8.3, NoScript's public source code repository is hosted on Github.
Recent development history:v 10.6.1rc1 ============================================================= x Make RequestGuard's header processing synchronous as needed x Fixed inconsistencies handling browser-internal URLs x Fixed resetting options works just once per session (defaults reference current settings) - issue #69 x [Locale] Updated Transifex-managed locales (de, fr, it, tr, nl) v 10.6rc2 ============================================================= x Limit wrappedJSObject usages to compatible browsers v 10.6rc1 ============================================================= x [Chromium] Merged chromium branch (unified code base) x [Locale] Updated Transifex-managed locales x Updated TLDs v 10.2.5rc1 ============================================================= x [XSS] Improved detection of privileged origins (fixes an about:tor to DuckDuckGo false positive) v 10.2.4rc1 ============================================================= x Improved prompts layout (thanks Ton for suggestion) x Improved unscanned POST blocking v 10.2.3rc3 ============================================================= x Updated Transifex-managed locales v 10.2.3rc2 ============================================================= x Fixed POST searches from the url bar causing XSS warnings v 10.2.3rc1 ============================================================= x Fixed popup top buttons not visible in high contrast appearance mode (thanks pjaworski for reporting) x Optimized popup layout initialization
Feedback
If you find something wrong about NoScript, read the FAQ page and/or let me know: I'll try to fix it as soon as I can.
You can also discuss about NoScript on this Forum.
Have your safest browsing experience!
