install.py: Waterfox compatibility and default to firefox user.js always (#485 )

* install.py: Integrate waterfox and default to firefox user.js always This commit: - Removes the old --zen switch - Adds a new --browser/-b switch to specify the browser. Available options: firefox, waterfox, zen - Now defaults to the firefox user.js even if there's new user.js added * install.py: Remove the redundant --zen flag
New profile system aloows for non-ascii characters (#470 )
2026-06-12 07:30:47 +05:30 · 2026-05-30 22:03:12 -04:00 · 2026-05-03 12:22:57 -04:00 · 2026-05-01 17:35:42 -04:00 · 2026-04-21 15:40:42 -04:00 · 2026-04-09 15:34:29 -04:00
13 changed files with 1039 additions and 688 deletions
@@ -0,0 +1 @@
 * text=auto
@@ -1,13 +0,0 @@
 # These are supported funding model platforms
 github: yokoffing
 patreon: # Replace with a single Patreon username
 open_collective: # Replace with a single Open Collective username
 ko_fi: yokoffing
 tidelift: # Replace with a single Tidelift platform-name/package-name e.g., npm/babel
 community_bridge: # Replace with a single Community Bridge project-name e.g., cloud-foundry
 liberapay: yokoffing
 issuehunt: # Replace with a single IssueHunt username
 otechie: # Replace with a single Otechie username
 lfx_crowdfunding: # Replace with a single LFX Crowdfunding project-name e.g., cloud-foundry
 custom: # Replace with up to 4 custom sponsorship URLs e.g., ['link1', 'link2']
@@ -3,7 +3,7 @@
 * Fastfox                                                                              *
 * "Non ducor duco"                                                                     *
 * priority: speedy browsing                                                            *
- * version: 137                                                                         *
+ * version: 150                                                                         *
 * url: https://github.com/yokoffing/Betterfox                                          *
 ***************************************************************************************/
@@ -22,6 +22,12 @@
 //user_pref("nglayout.initialpaint.delay", 5); // DEFAULT; formerly 250
    //user_pref("nglayout.initialpaint.delay_in_oopif", 5); // DEFAULT
 // PREF: Font rendering cache in Skia (32MB)
 // Increases font cache size to improve performance on text-heavy websites.
 // Especially beneficial for sites with many font faces or complex typography.
 // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1239151#c2
 //user_pref("gfx.content.skia-font-cache-size", 32); // 32 MB; default=5; Chrome=20
 // PREF: page reflow timer
 // Rather than wait until a page has completely downloaded to display it to the user,
 // web browsers will periodically render what has been received to that point.
@@ -33,7 +39,7 @@
 // false = reflow pages whenever new data is received
 //user_pref("content.notify.ontimer", true); // DEFAULT
-// PREF: notification interval (in microseconds) to avoid layout thrashing
+// PREF: content notification delay - notification interval (in microseconds) to avoid layout thrashing
 // When Firefox is loading a page, it periodically reformats
 // or "reflows" the page as it loads. The page displays new elements
 // every 0.12 seconds by default. These redraws increase the total page load time.
@@ -47,7 +53,16 @@
 // [1] https://searchfox.org/mozilla-central/rev/c1180ea13e73eb985a49b15c0d90e977a1aa919c/modules/libpref/init/StaticPrefList.yaml#1824-1834
 // [2] https://web.archive.org/web/20240115073722/https://dev.opera.com/articles/efficient-javascript/?page=3#reflow
 // [3] https://web.archive.org/web/20240115073722/https://dev.opera.com/articles/efficient-javascript/?page=3#smoothspeed
-user_pref("content.notify.interval", 100000); // (.10s); default=120000 (.12s)
+//user_pref("content.notify.interval", 100000); // (.10s); default=120000 (.12s)
 //user_pref("content.max.tokenizing.time", 1000000); // (1.00s); alt=2000000; HIDDEN
 //user_pref("content.interrupt.parsing", true); // HIDDEN
 // PREF: UI responsiveness threshold
 //user_pref("content.switch.threshold", 300000); // HIDDEN; default= 750000; alt=500000
 // PREF: split text nodes to a length
 // The number of bytes in a text node.
 //user_pref("content.maxtextrun", 8191); // DEFAULT; HIDDEN
 // PREF: new tab preload
 // [WARNING] Disabling this may cause a delay when opening a new tab in Firefox.
@@ -78,6 +93,15 @@ user_pref("content.notify.interval", 100000); // (.10s); default=120000 (.12s)
 // PREF: lazy load iframes
 //user_pref("dom.iframe_lazy_loading.enabled", true); // DEFAULT [FF121+]
 // PREF: Prioritized Task Scheduling API 
 // [1] https://github.com/yokoffing/Betterfox/issues/355
 // [2] https://blog.mozilla.org/performance/2022/06/02/prioritized-task-scheduling-api-is-prototyped-in-nightly/
 // [3] https://medium.com/airbnb-engineering/building-a-faster-web-experience-with-the-posttask-scheduler-276b83454e91
 // [4] https://github.com/WICG/scheduling-apis/blob/main/explainers/prioritized-post-task.md
 // [5] https://wicg.github.io/scheduling-apis/
 // [6] https://caniuse.com/mdn-api_taskcontroller
 //user_pref("dom.enable_web_task_scheduling", true); // DEFAULT [FF142+]
 /****************************************************************************
 * SECTION: GFX RENDERING TWEAKS                                            *
 ****************************************************************************/
@@ -93,6 +117,15 @@ user_pref("content.notify.interval", 100000); // (.10s); default=120000 (.12s)
 //user_pref("gfx.webrender.compositor", true); // DEFAULT WINDOWS macOS
    //user_pref("gfx.webrender.compositor.force-enabled", true); // enforce
 // PREF: Webrender layer compositor
 // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1945683
 // [2] https://www.reddit.com/r/firefox/comments/1p58qre/firefox_is_getting_ready_to_make_youtube_fast/
 // [3] https://www.ghacks.net/2025/11/24/these-two-tweaks-should-improve-firefoxs-performance-on-youtube-significantly/
 //user_pref("gfx.webrender.layer-compositor", true);
    // If your PC uses an AMD GPU, you might want to make a second change.
    // This one improves CPU usage on AMD systems.
 //user_pref("media.wmf.zero-copy-nv12-textures-force-enabled", true);
 // PREF: if your hardware doesn't support Webrender, you can fallback to Webrender's software renderer
 // [1] https://www.ghacks.net/2020/12/14/how-to-find-out-if-webrender-is-enabled-in-firefox-and-how-to-enable-it-if-it-is-not/
 //user_pref("gfx.webrender.software", true); // Software Webrender uses CPU instead of GPU
@@ -109,10 +142,13 @@ user_pref("content.notify.interval", 100000); // (.10s); default=120000 (.12s)
 // [2] https://github.com/yokoffing/Betterfox/issues/153
 // [3] https://github.com/yokoffing/Betterfox/issues/198
 //user_pref("gfx.canvas.accelerated", true); // [DEFAULT FF133+]
-    //user_pref("gfx.canvas.accelerated.cache-items", 8192); // DEFAULT FF135+; Chrome=4096
+    //user_pref("gfx.canvas.accelerated.cache-items", 4096); // [default=8192 FF135+]; Chrome=4096
-    user_pref("gfx.canvas.accelerated.cache-size", 512); // default=256; Chrome=512
+    //user_pref("gfx.canvas.accelerated.cache-size", 512); // default=256; Chrome=512
-    user_pref("gfx.content.skia-font-cache-size", 20); // default=5; Chrome=20
+    //user_pref("gfx.canvas.max-size", 32767); // DEFAULT=32767
-    // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1239151#c2
+
 // PREF: WebGL
 //user_pref("webgl.max-size", 16384); // default=1024
 //user_pref("webgl.force-enabled", true);
 // PREF: prefer GPU over CPU
 // At best, the prefs do nothing on Linux/macOS.
@@ -138,14 +174,6 @@ user_pref("content.notify.interval", 100000); // (.10s); default=120000 (.12s)
 * SECTION: DISK CACHE                                                     *
 ****************************************************************************/
 // PREF: disk cache
 // [NOTE] If you think it helps performance, then feel free to override this.
 // [SETTINGS] See about:cache
 // More efficient to keep the browser cache instead of having to
 // re-download objects for the websites you visit frequently.
 // [1] https://www.janbambas.cz/new-firefox-http-cache-enabled/
 user_pref("browser.cache.disk.enable", false);
 // PREF: disk cache size
 // [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=913808,968106,968101
 // [2] https://rockridge.hatenablog.com/entry/2014/09/15/165501
@@ -179,7 +207,7 @@ user_pref("browser.cache.disk.enable", false);
 // for recently read cache entries [1]. It is managed by a cache thread, and caches with
 // metadata in the pool appear to be reused immediately.
 // [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=986179
-//user_pref("browser.cache.disk.metadata_memory_limit", 500); // default=250 (0.25 MB); limit of recent metadata we keep in memory for faster access
+//user_pref("browser.cache.disk.metadata_memory_limit", 16384); // default=250 (0.25 MB); limit of recent metadata we keep in memory for faster access
 // PREF: number of chunks we preload ahead of read
 // Large content such as images will load faster.
@@ -254,13 +282,14 @@ user_pref("browser.cache.disk.enable", false);
 // that only contains settings for systems at or below 8GB of system memory [1].
 // Waterfox G6 allows it to go above 8GB machines [3].
 // Value can be up to the max size of an unsigned 64-bit integer.
-// -1=Automatically decide the maximum memory to use to cache decoded images,
+// -1 = Automatically decide the maximum memory to use to cache decoded images,
 // messages, and chrome based on the total amount of RAM
 // For machines with 8GB+ RAM, that equals 32768 kb = 32 MB
 // [1] https://kb.mozillazine.org/Browser.cache.memory.capacity#-1
 // [2] https://searchfox.org/mozilla-central/source/netwerk/cache2/CacheObserver.cpp#94-125
 // [3] https://github.com/WaterfoxCo/Waterfox/commit/3fed16932c80a2f6b37d126fe10aed66c7f1c214
-//user_pref("browser.cache.memory.capacity", -1); // DEFAULT; 256000=256 MB; 512000=500 MB; 1048576=1GB, 2097152=2GB
+//user_pref("browser.cache.memory.capacity", 131072); // 128 MB RAM cache; alt=65536 (65 MB RAM cache); default=32768
-//user_pref("browser.cache.memory.max_entry_size", 10240); // (10 MB); default=5120 (5 MB)
+//user_pref("browser.cache.memory.max_entry_size", 20480); // 20 MB max entry; default=5120 (5 MB)
 // PREF: amount of Back/Forward cached pages stored in memory for each tab
 // Pages that were recently visited are stored in memory in such a way
@@ -271,7 +300,15 @@ user_pref("browser.cache.disk.enable", false);
 // is no reason for Firefox to keep memory for this.
 // -1=determine automatically (8 pages)
 // [1] https://kb.mozillazine.org/Browser.sessionhistory.max_total_viewers#Possible_values_and_their_effects
-//user_pref("browser.sessionhistory.max_total_viewers", 4);
+//user_pref("browser.sessionhistory.max_total_viewers", 4); // default=8
 //user_pref("browser.sessionstore.max_tabs_undo", 10); // default=25
    //user_pref("browser.sessionstore.max_entries", 10); // [HIDDEN OR REMOVED]
    //user_pref("dom.storage.default_quota", 20480); // 20MB; default=5120
    //user_pref("dom.storage.shadow_writes", true);
 // PREF: tell garbage collector to start running when javascript is using xx MB of memory
 // Garbage collection releases memory back to the system.
 //user_pref("javascript.options.mem.high_water_mark", 128); // DEFAULT [HIDDEN OR REMOVED]
 /****************************************************************************
 * SECTION: MEDIA CACHE                                                     *
@@ -280,13 +317,8 @@ user_pref("browser.cache.disk.enable", false);
 // PREF: media disk cache
 //user_pref("media.cache_size", 512000); // DEFAULT
 // PREF: media memory cache
 // [1] https://hg.mozilla.org/mozilla-central/file/tip/modules/libpref/init/StaticPrefList.yaml#l9652
 // [2] https://github.com/arkenfox/user.js/pull/941
 user_pref("media.memory_cache_max_size", 65536); // default=8192; AF=65536; alt=131072
 // PREF: media cache combine sizes
-//user_pref("media.memory_caches_combined_limit_kb", 524288); // DEFAULT; alt=1048576
+//user_pref("media.memory_caches_combined_limit_kb", 1048576); // 1GB; default=524288
 //user_pref("media.memory_caches_combined_limit_pc_sysmem", 5); // DEFAULT; alt=10; the percentage of system memory that Firefox can use for media caches
 // PREF: Media Source Extensions (MSE) web standard
@@ -300,19 +332,20 @@ user_pref("media.memory_cache_max_size", 65536); // default=8192; AF=65536; alt=
 // PREF: adjust video buffering periods when not using MSE (in seconds)
 // [NOTE] Does not affect videos over 720p since they use DASH playback [1]
 // [1] https://lifehacker.com/preload-entire-youtube-videos-by-disabling-dash-playbac-1186454034
-user_pref("media.cache_readahead_limit", 7200); // 120 min; default=60; stop reading ahead when our buffered data is this many seconds ahead of the current playback
+//user_pref("media.cache_readahead_limit", 600); // 10 min; default=60; stop reading ahead when our buffered data is this many seconds ahead of the current playback
-user_pref("media.cache_resume_threshold", 3600); // 60 min; default=30; when a network connection is suspended, don't resume it until the amount of buffered data falls below this threshold
+//user_pref("media.cache_resume_threshold", 300); // 5 min; default=30; when a network connection is suspended, don't resume it until the amount of buffered data falls below this threshold
 /****************************************************************************
 * SECTION: IMAGE CACHE                                                     *
 ****************************************************************************/
 // PREF: image cache
-//user_pref("image.cache.size", 5242880); // DEFAULT; in MiB; alt=10485760 (cache images up to 10MiB in size)
+//user_pref("image.cache.size", 10485760); // (cache images up to 10MiB in size) [DEFAULT 5242880]
-user_pref("image.mem.decode_bytes_at_a_time", 32768); // default=16384; alt=65536; chunk size for calls to the image decoders
+//user_pref("image.mem.decode_bytes_at_a_time", 65536); // default=16384; alt=32768; chunk size for calls to the image decoders
 //user_pref("image.mem.max_decoded_image_kb", 512000); // 500MB [HIDDEN OR REMOVED?]
 // PREF: set minimum timeout to unmap shared surfaces since they have been last used
-// This is only used on 32-bit builds of Firefox where there is meaningful
+// [NOTE] This is only used on 32-bit builds of Firefox where there is meaningful
 // virtual address space pressure.
 // [1] https://phabricator.services.mozilla.com/D109440
 // [2] https://bugzilla.mozilla.org/show_bug.cgi?id=1699224
@@ -336,10 +369,11 @@ user_pref("image.mem.decode_bytes_at_a_time", 32768); // default=16384; alt=6553
 // [1] https://kb.mozillazine.org/Network.http.max-connections
 // [2] https://kb.mozillazine.org/Network.http.max-persistent-connections-per-server
 // [3] https://www.reddit.com/r/firefox/comments/11m2yuh/how_do_i_make_firefox_use_more_of_my_900_megabit/jbfmru6/
-user_pref("network.http.max-connections", 1800); // default=900
+//user_pref("network.http.max-connections", 1800); // default=900
-user_pref("network.http.max-persistent-connections-per-server", 10); // default=6; download connections; anything above 10 is excessive
+//user_pref("network.http.max-persistent-connections-per-server", 10); // default=6; download connections; anything above 10 is excessive
-    user_pref("network.http.max-urgent-start-excessive-connections-per-host", 5); // default=3
+    //user_pref("network.http.max-urgent-start-excessive-connections-per-host", 5); // default=3
    //user_pref("network.http.max-persistent-connections-per-proxy", 48); // default=32
 //user_pref("network.http.request.max-start-delay", 5); // default=10
 //user_pref("network.websocket.max-connections", 200); // DEFAULT
 // PREF: pacing requests [FF23+]
@@ -349,189 +383,28 @@ user_pref("network.http.max-persistent-connections-per-server", 10); // default=
 // Pacing requests adds a slight delay between requests to throttle them.
 // If you have a fast machine and internet connection, disabling pacing
 // may provide a small speed boost when loading pages with lots of requests.
-// false=Firefox will send as many requests as possible without pacing
+// false = Firefox will send as many requests as possible without pacing
-// true=Firefox will pace requests (default)
+// true = Firefox will pace requests (default)
-user_pref("network.http.pacing.requests.enabled", false);
+//user_pref("network.http.pacing.requests.enabled", false);
    //user_pref("network.http.pacing.requests.min-parallelism", 10); // default=6
-    //user_pref("network.http.pacing.requests.burst", 14); // default=10
+    //user_pref("network.http.pacing.requests.burst", 32); // default=10
 // PREF: increase DNS cache
 // [1] https://developer.mozilla.org/en-US/docs/Web/Performance/Understanding_latency
-//user_pref("network.dnsCacheEntries", 1000); // default=400
+//user_pref("network.dnsCacheEntries", 10000); // default=800
 // PREF: adjust DNS expiration time
 // [ABOUT] about:networking#dns
 // [NOTE] These prefs will be ignored by DNS resolver if using DoH/TRR.
-user_pref("network.dnsCacheExpiration", 3600); // keep entries for 1 hour
+//user_pref("network.dnsCacheExpiration", 3600); // keep entries for 1 hour; default=60
-    //user_pref("network.dnsCacheExpirationGracePeriod", 240); // default=60; cache DNS entries for 4 minutes after they expire
+    //user_pref("network.dnsCacheExpirationGracePeriod", 120); // default=60; cache DNS entries for 2 minutes after they expire
 // PREF: the number of threads for DNS
 //user_pref("network.dns.max_high_priority_threads", 40); // DEFAULT [FF 123?]
 //user_pref("network.dns.max_any_priority_threads", 24); // DEFAULT [FF 123?]
 // PREF: increase TLS token caching 
-user_pref("network.ssl_tokens_cache_capacity", 10240); // default=2048; more TLS token caching (fast reconnects)
+//user_pref("network.ssl_tokens_cache_capacity", 10240); // default=2048; more TLS token caching (fast reconnects)
 /****************************************************************************
 * SECTION: SPECULATIVE LOADING                                            *
 ****************************************************************************/
 // These are connections that are not explicitly asked for (e.g., clicked on).
 // [1] https://developer.mozilla.org/en-US/docs/Web/Performance/Speculative_loading
 // [NOTE] FF85+ partitions (isolates) pooled connections, prefetch connections,
 // pre-connect connections, speculative connections, TLS session identifiers,
 // and other connections. We can take advantage of the speed of pre-connections
 // while preserving privacy. Users may relax hardening to maximize their preference.
 // For more information, see SecureFox: "PREF: State Paritioning" and "PREF: Network Partitioning".
 // [NOTE] To activate and increase network predictions, go to settings in uBlock Origin and uncheck:
 // - "Disable pre-fetching (to prevent any connection for blocked network requests)"
 // [NOTE] Add prefs to "MY OVERRIDES" section and uncomment to enable them in your user.js.
 // PREF: link-mouseover opening connection to linked server
 // When accessing content online, devices use sockets as endpoints.
 // The global limit on half-open sockets controls how many speculative
 // connection attempts can occur at once when starting new connections [3].
 // If the user follows through, pages can load faster since some
 // work was done in advance. Firefox opens predictive connections
 // to sites when hovering over New Tab thumbnails or starting a
 // URL Bar search [1] and hyperlinks within a page [2].
 // [NOTE] DNS (if enabled), TCP, and SSL handshakes are set up in advance,
 // but page contents are not downloaded until a click on the link is registered.
 // [1] https://support.mozilla.org/en-US/kb/how-stop-firefox-making-automatic-connections?redirectslug=how-stop-firefox-automatically-making-connections&redirectlocale=en-US#:~:text=Speculative%20pre%2Dconnections
 // [2] https://news.slashdot.org/story/15/08/14/2321202/how-to-quash-firefoxs-silent-requests
 // [3] https://searchfox.org/mozilla-central/rev/028c68d5f32df54bca4cf96376f79e48dfafdf08/modules/libpref/init/all.js#1280-1282
 // [4] https://www.keycdn.com/blog/resource-hints#prefetch
 // [5] https://3perf.com/blog/link-rels/#prefetch
 //user_pref("network.http.speculative-parallel-limit", 20); // DEFAULT (FF127+?)
 // PREF: DNS prefetching for HTMLLinkElement <link rel="dns-prefetch">
 // Used for cross-origin connections to provide small performance improvements.
 // You can enable rel=dns-prefetch for the HTTPS document without prefetching
 // DNS for anchors, whereas the latter makes more specualtive requests [5].
 // [1] https://bitsup.blogspot.com/2008/11/dns-prefetching-for-firefox.html
 // [2] https://css-tricks.com/prefetching-preloading-prebrowsing/#dns-prefetching
 // [3] https://www.keycdn.com/blog/resource-hints#2-dns-prefetching
 // [4] http://www.mecs-press.org/ijieeb/ijieeb-v7-n5/IJIEEB-V7-N5-2.pdf
 // [5] https://bugzilla.mozilla.org/show_bug.cgi?id=1596935#c28
 user_pref("network.dns.disablePrefetch", true);
    user_pref("network.dns.disablePrefetchFromHTTPS", true); // [FF127+ false]
 // PREF:  DNS prefetch for HTMLAnchorElement (speculative DNS)
 // Disable speculative DNS calls to prevent Firefox from resolving
 // hostnames for other domains linked on a page. This may eliminate
 // unnecessary DNS lookups, but can increase latency when following external links.
 // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1596935#c28
 // [2] https://github.com/arkenfox/user.js/issues/1870#issuecomment-2220773972
 //user_pref("dom.prefetch_dns_for_anchor_http_document", false); // [FF128+]
 //user_pref("dom.prefetch_dns_for_anchor_https_document", false); // DEFAULT [FF128+]
 // PREF: enable <link rel="preconnect"> tag and Link: rel=preconnect response header handling
 //user_pref("network.preconnect", true); // DEFAULT
 // PREF: preconnect to the autocomplete URL in the address bar
 // Whether to warm up network connections for autofill or search results.
 // Firefox preloads URLs that autocomplete when a user types into the address bar.
 // Connects to destination server ahead of time, to avoid TCP handshake latency.
 // [NOTE] Firefox will perform DNS lookup (if enabled) and TCP and TLS handshake,
 // but will not start sending or receiving HTTP data.
 // [1] https://www.ghacks.net/2017/07/24/disable-preloading-firefox-autocomplete-urls/
 //user_pref("browser.urlbar.speculativeConnect.enabled", false);
 // PREF: mousedown speculative connections on bookmarks and history [FF98+]
 // Whether to warm up network connections for places:menus and places:toolbar.
 //user_pref("browser.places.speculativeConnect.enabled", false);
 // PREF: network module preload <link rel="modulepreload"> [FF115+]
 // High-priority loading of current page JavaScript modules.
 // Used to preload high-priority JavaScript modules for strategic performance improvements.
 // Module preloading allows developers to fetch JavaScript modules and dependencies
 // earlier to accelerate page loads. The browser downloads, parses, and compiles modules
 // referenced by links with this attribute in parallel with other resources, rather
 // than sequentially waiting to process each. Preloading reduces overall download times.
 // Browsers may also automatically preload dependencies without firing extra events.
 // Unlike other pre-connection tags (except rel=preload), this tag is mandatory for the browser.
 // [1] https://developer.mozilla.org/en-US/docs/Web/HTML/Attributes/rel/modulepreload
 //user_pref("network.modulepreload", true); // DEFAULT
 // PREF: link prefetching <link rel="prefetch">
 // Pre-populates the HTTP cache by prefetching same-site future navigation
 // resources or subresources used on those pages.
 // Enabling link prefetching allows Firefox to preload pages tagged as important.
 // The browser prefetches links with the prefetch-link tag, fetching resources
 // likely needed for the next navigation at low priority. When clicking a link
 // or loading a new page, prefetching stops and discards hints. Prefetching
 // downloads resources without executing them.
 // [NOTE] Since link prefetch uses the HTTP cache, it has a number of issues
 // with document prefetches, such as being potentially blocked by Cache-Control headers
 // (e.g. cache partitioning).
 // [1] https://developer.mozilla.org/en-US/docs/Glossary/Prefetch
 // [2] http://www.mecs-press.org/ijieeb/ijieeb-v7-n5/IJIEEB-V7-N5-2.pdf
 // [3] https://timkadlec.com/remembers/2020-06-17-prefetching-at-this-age/
 // [4] https://3perf.com/blog/link-rels/#prefetch
 // [5] https://developer.mozilla.org/docs/Web/HTTP/Link_prefetching_FAQ
 user_pref("network.prefetch-next", false);
 // PREF: Fetch Priority API [FF119+]
 // Indicates whether the `fetchpriority` attribute for elements which support it.
 // [1] https://web.dev/articles/fetch-priority
 // [2] https://nitropack.io/blog/post/priority-hints
 // [2] https://developer.mozilla.org/en-US/docs/Web/API/HTMLImageElement/fetchPriority
 // [3] https://developer.mozilla.org/en-US/docs/Web/API/HTMLLinkElement/fetchPriority
 //user_pref("network.fetchpriority.enabled", true);
 // PREF: early hints [FF120+]
 // [1] https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/103
 // [2] https://developer.chrome.com/blog/early-hints/
 // [3] https://blog.cloudflare.com/early-hints/
 // [4] https://blog.cloudflare.com/early-hints-performance/
 //user_pref("network.early-hints.enabled", true);
 // PREF: `Link: rel=preconnect` in 103 Early Hint response [FF120+]
 // Used to warm most critical cross-origin connections to provide
 // performance improvements when connecting to them.
 // [NOTE] When 0, this is limited by "network.http.speculative-parallel-limit".
 //user_pref("network.early-hints.preconnect.enabled", true);
 //user_pref("network.early-hints.preconnect.max_connections", 10); // DEFAULT
 // PREF: Network Predictor (NP)
 // When enabled, it trains and uses Firefox's algorithm to preload page resource
 // by tracking past page resources. It uses a local file (history) of needed images,
 // scripts, etc. to request them preemptively when navigating.
 // [NOTE] By default, it only preconnects, doing DNS, TCP, and SSL handshakes.
 // No data sends until clicking. With "network.predictor.enable-prefetch" enabled,
 // it also performs prefetches.
 // [1] https://wiki.mozilla.org/Privacy/Reviews/Necko
 // [2] https://www.ghacks.net/2014/05/11/seer-disable-firefox/
 // [3] https://github.com/dillbyrne/random-agent-spoofer/issues/238#issuecomment-110214518
 // [4] https://www.igvita.com/posa/high-performance-networking-in-google-chrome/#predictor
 user_pref("network.predictor.enabled", false);
 // PREF: Network Predictor fetch for resources ahead of time
 // Prefetch page resources based on past user behavior.
 //user_pref("network.predictor.enable-prefetch", false); // DEFAULT
 // PREF: make Network Predictor active when hovering over links
 // When hovering over links, Network Predictor uses past resource history to
 // preemptively request what will likely be needed instead of waiting for the document.
 // Predictive connections automatically open when hovering over links to speed up
 // loading, starting some work in advance.
 //user_pref("network.predictor.enable-hover-on-ssl", false); // DEFAULT
 // PREF: assign Network Predictor confidence levels
 // [NOTE] Keep in mind that Network Predictor must LEARN your browsing habits.
 // Editing these lower will cause more speculative connections to occur,
 // which reduces accuracy over time and has privacy implications.
 //user_pref("network.predictor.preresolve-min-confidence", 60); // DEFAULT
 //user_pref("network.predictor.preconnect-min-confidence", 90); // DEFAULT
 //user_pref("network.predictor.prefetch-min-confidence", 100); // DEFAULT
 // PREF: other Network Predictor values
 // [NOTE] Keep in mmind that Network Predictor must LEARN your browsing habits.
 //user_pref("network.predictor.prefetch-force-valid-for", 10); // DEFAULT; how long prefetched resources are considered valid and usable (in seconds) for the prediction modeling
 //user_pref("network.predictor.prefetch-rolling-load-count", 10); // DEFAULT; the maximum number of resources that Firefox will prefetch in memory at one time based on prediction modeling
 //user_pref("network.predictor.max-resources-per-entry", 250); // default=100
 //user_pref("network.predictor.max-uri-length", 1000); // default=500
 /****************************************************************************
 * SECTION: EXPERIMENTAL                                                    *
@@ -540,16 +413,7 @@ user_pref("network.predictor.enabled", false);
 // PREF: CSS Masonry Layout [NIGHTLY]
 // [1] https://developer.mozilla.org/en-US/docs/Web/CSS/CSS_Grid_Layout/Masonry_Layout
 // [2] https://www.smashingmagazine.com/native-css-masonry-layout-css-grid/
-user_pref("layout.css.grid-template-masonry-value.enabled", true);
+//user_pref("layout.css.grid-template-masonry-value.enabled", true);
 // PREF: Prioritized Task Scheduling API [NIGHTLY]
 // [1] https://github.com/yokoffing/Betterfox/issues/355
 // [2] https://blog.mozilla.org/performance/2022/06/02/prioritized-task-scheduling-api-is-prototyped-in-nightly/
 // [3] https://medium.com/airbnb-engineering/building-a-faster-web-experience-with-the-posttask-scheduler-276b83454e91
 // [4] https://github.com/WICG/scheduling-apis/blob/main/explainers/prioritized-post-task.md
 // [5] https://wicg.github.io/scheduling-apis/
 // [6] https://caniuse.com/mdn-api_taskcontroller
 //user_pref("dom.enable_web_task_scheduling", true);
 /****************************************************************************
 * SECTION: TAB UNLOAD                                                      *
@@ -597,6 +461,7 @@ user_pref("layout.css.grid-template-masonry-value.enabled", true);
 // [2] https://firefox-source-docs.mozilla.org/dom/ipc/process_model.html#web-content-processes 
 //user_pref("dom.ipc.processCount", 8); // DEFAULT; Shared Web Content
 //user_pref("dom.ipc.processCount.webIsolated", 1); // default=4; Isolated Web Content
 //user_pref("dom.ipc.keepProcessesAlive.web", 4); // default=1 [HIDDEN OR REMOVED]
 // PREF: use one process for process preallocation cache
 //user_pref("dom.ipc.processPrelaunch.fission.number", 1); // default=3; Process Preallocation Cache
@@ -3,7 +3,7 @@
 * Peskyfox                                                                 *
 * "Aquila non capit muscas"                                                *
 * priority: remove annoyances                                              *
- * version: 137                                                             *
+ * version: 148                                                             *
 * url: https://github.com/yokoffing/Betterfox                              *
 * credit: Some prefs are reproduced and adapted from the arkenfox project  *
 * credit urL: https://github.com/arkenfox/user.js                          *
@@ -13,11 +13,6 @@
 * SECTION: MOZILLA UI                                                      *
 ****************************************************************************/
 // PREF: Mozilla VPN
 // [1] https://github.com/yokoffing/Betterfox/issues/169
 user_pref("browser.privatebrowsing.vpnpromourl", "");
    //user_pref("browser.vpn_promo.enabled", false);
 // PREF: disable about:addons' Recommendations pane (uses Google Analytics)
 user_pref("extensions.getAddons.showPane", false); // HIDDEN
@@ -29,14 +24,6 @@ user_pref("extensions.htmlaboutaddons.recommendations.enabled", false);
 // [SETTING] Privacy & Security>Firefox Data Collection & Use>Allow Firefox to make personalized extension recommendations
 user_pref("browser.discovery.enabled", false);
 // PREF: disable Fakespot integration [FF116+]
 // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1840156#c0
 // [2] https://github.com/arkenfox/user.js/issues/1730
 // [3] https://www.fakespot.com/
 // [4] https://www.ghacks.net/2023/10/12/firefox-will-soon-tell-you-if-product-reviews-are-reliable/
 //user_pref("browser.shopping.experience2023.enabled", false); // DEFAULT
 //user_pref("browser.shopping.experience2023.ads.exposure", false); // DEFAULT [FF121+]
 // PREF: disable Firefox from asking to set as the default browser
 // [1] https://github.com/yokoffing/Betterfox/issues/166
 user_pref("browser.shell.checkDefaultBrowser", false);
@@ -56,7 +43,7 @@ user_pref("browser.preferences.moreFromMozilla", false);
 user_pref("browser.aboutConfig.showWarning", false);
 // PREF: disable welcome notices
-//user_pref("browser.startup.homepage_override.mstone", "ignore"); // What's New page after updates; master switch
+user_pref("browser.startup.homepage_override.mstone", "ignore");
 user_pref("browser.aboutwelcome.enabled", false); // disable Intro screens
    //user_pref("startup.homepage_welcome_url", "");
    //user_pref("startup.homepage_welcome_url.additional", "");
@@ -72,6 +59,9 @@ user_pref("browser.profiles.enabled", true);
 // [1] https://github.com/yokoffing/Betterfox/issues/320
 //user_pref("widget.gtk.non-native-titlebar-buttons.enabled", true);
 // PREF: disable search engine switcher in the URL bar [FF136+]
 //user_pref("browser.urlbar.scotchBonnet.enableOverride", false);
 /****************************************************************************
 * SECTION: THEME ADJUSTMENTS                                              *
 ****************************************************************************/
@@ -105,32 +95,35 @@ user_pref("browser.privateWindowSeparation.enabled", false);
 //user_pref("browser.newtabpage.activity-stream.newtabWallpapers.v2.enabled", true); // [DEFAULT FF132+]
 /****************************************************************************
- * SECTION: COOKIE BANNER HANDLING                                         *
+ * SECTION: AI                                                              *
 ****************************************************************************/
 // PREF: AI default controls
 // [1] https://blog.mozilla.org/en/firefox/how-to-use-ai-controls/
 user_pref("browser.ai.control.default", "blocked");
 user_pref("browser.ml.enable", false);
-// PREF: Cookie Banner handling
+// PREF: Translations
-// [DEPRECIATED] Future of the project is unclear. See [5] and [6].
+//user_pref("browser.ai.control.translations", "blocked");
 // [NOTE] Feature still enforces Total Cookie Protection to limit 3rd-party cookie tracking [1]
 // [1] https://github.com/mozilla/cookie-banner-rules-list/issues/33#issuecomment-1318460084
 // [2] https://phabricator.services.mozilla.com/D153642
 // [3] https://winaero.com/make-firefox-automatically-click-on-reject-all-in-cookie-banner-consent/
 // [4] https://docs.google.com/spreadsheets/d/1Nb4gVlGadyxix4i4FBDnOeT_eJp2Zcv69o-KfHtK-aA/edit#gid=0
 // [5] https://bugzilla.mozilla.org/show_bug.cgi?id=1940418
 // [6] https://github.com/mozilla/cookie-banner-rules-list/issues/544
 // 2: reject banners if it is a one-click option; otherwise, fall back to the accept button to remove banner
 // 1: reject banners if it is a one-click option; otherwise, keep banners on screen
 // 0: disable all cookie banner handling
 //user_pref("cookiebanners.service.mode", 1);
 //user_pref("cookiebanners.service.mode.privateBrowsing", 1);
-// PREF: Cookie Banner global rules
+// PREF: Image alt text in Nightly PDF viewer
-// Global rules that can handle a list of cookie banner libraries and providers on any site.
+//user_pref("browser.ai.control.pdfjsAltText", "blocked");
-// This is used for click rules that can handle common Consent Management Providers (CMP).
+
-//user_pref("cookiebanners.service.enableGlobalRules", true); // DEFAULT [FF121+]
+// PREF: Tab group suggestions
-//user_pref("cookiebanners.service.enableGlobalRules.subFrames", true); // DEFAULT [FF121+]
+// [1] https://support.mozilla.org/kb/how-use-ai-enhanced-tab-groups
 //user_pref("browser.ai.control.smartTabGroups", "blocked");
 user_pref("browser.tabs.groups.smart.enabled", false);
 // PREF: Key points in link previews
 //user_pref("browser.ai.control.linkPreviewKeyPoints", "blocked");
 user_pref("browser.ml.linkPreview.enabled", false);
 // PREF: Chatbot in sidebar
 //user_pref("browser.ai.control.sidebarChatbot", "blocked");
 user_pref("browser.ml.chat.enabled", false);
 user_pref("browser.ml.chat.menu", false);
 /****************************************************************************
- * SECTION: TRANSLATIONS                                                   *
+ * SECTION: TRANSLATIONS                                                    *
 ****************************************************************************/
 // PREF: Firefox Translations [FF118+]
@@ -152,8 +145,9 @@ user_pref("full-screen-api.transition-duration.enter", "0 0"); // default=200 20
 user_pref("full-screen-api.transition-duration.leave", "0 0"); // default=200 200
 // PREF: disable fullscreen notice
-user_pref("full-screen-api.warning.delay", -1); // default=500
+// [NOTE] Adjust to a sensible value, like 1250, if you have security concerns.
-user_pref("full-screen-api.warning.timeout", 0); // default=3000
+//user_pref("full-screen-api.warning.timeout", 0); // default=3000; alt=1250
 //user_pref("full-screen-api.warning.delay", -1); // default=500
 /****************************************************************************
 * SECTION: FONT APPEARANCE                                                 *
@@ -191,11 +185,10 @@ user_pref("full-screen-api.warning.timeout", 0); // default=3000
 user_pref("browser.urlbar.suggest.engines", false);
    //user_pref("browser.urlbar.suggest.searches", false);
 //user_pref("browser.urlbar.quickactions.enabled", false);
 //user_pref("browser.urlbar.shortcuts.quickactions", false);
 //user_pref("browser.urlbar.suggest.weather", true); // DEFAULT [FF108]
    //user_pref("browser.urlbar.weather.ignoreVPN", false); // DEFAULT
 //user_pref("browser.urlbar.suggest.calculator", true); // [DEFAULT FF137+]
-user_pref("browser.urlbar.unitConversion.enabled", true);
+//user_pref("browser.urlbar.unitConversion.enabled", true); // [DEFAULT FF141+]
 // PREF: disable dropdown suggestions with empty query
 //user_pref("browser.urlbar.suggest.topsites", false);
@@ -207,10 +200,11 @@ user_pref("browser.urlbar.trending.featureGate", false);
 // PREF: disable urlbar suggestions
 //user_pref("browser.urlbar.addons.featureGate", false); // [FF115+]
 //user_pref("browser.urlbar.amp.featureGate", false); // [FF141+] adMarketplace
 //user_pref("browser.urlbar.fakespot.featureGate", false); // [FF130+] [DEFAULT: false]
 //user_pref("browser.urlbar.mdn.featureGate", false); // [FF117+] [HIDDEN PREF]
 //user_pref("browser.urlbar.pocket.featureGate", false); // [FF116+] [DEFAULT: false]
 //user_pref("browser.urlbar.weather.featureGate", false); // [FF108+] [DEFAULT: false]
 //user_pref("browser.urlbar.wikipedia.featureGate", false); // [FF141+]
 //user_pref("browser.urlbar.clipboard.featureGate", false); // [FF118+] [DEFAULT: true FF125+]
 //user_pref("browser.urlbar.yelp.featureGate", false); // [FF124+] [DEFAULT: false]
@@ -238,11 +232,13 @@ user_pref("browser.urlbar.trending.featureGate", false);
 //user_pref("browser.urlbar.maxRichResults", 5); // default=10
 // PREF: text fragments
 // [WARNING] Enabling can cause tab crashes [4]
 // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1753933#c6
 // [2] https://developer.mozilla.org/en-US/docs/Web/Text_fragments
 // [3] https://web.dev/articles/text-fragments
 // [4] https://github.com/yokoffing/Betterfox/issues/397
 //user_pref("dom.text_fragments.enabled", true); // [DEFAULT]
-user_pref("dom.text_fragments.create_text_fragment.enabled", true);
+//user_pref("dom.text_fragments.create_text_fragment.enabled", true);
 /****************************************************************************
 * SECTION: AUTOPLAY                                                        *
@@ -290,15 +286,15 @@ user_pref("dom.text_fragments.create_text_fragment.enabled", true);
 //user_pref("browser.newtabpage.activity-stream.discoverystream.enabled", false);
 //user_pref("browser.newtabpage.activity-stream.showSearch", true); // NTP Web Search [DEFAULT]
 //user_pref("browser.newtabpage.activity-stream.feeds.topsites", false); // Shortcuts
-      user_pref("browser.newtabpage.activity-stream.showSponsoredTopSites", false); // Shortcuts > Sponsored shortcuts [FF83+]
+      user_pref("browser.newtabpage.activity-stream.showSponsoredTopSites", false); // Sponsored shortcuts [FF83+]
 //user_pref("browser.newtabpage.activity-stream.showWeather", false); // Weather [FF130+]
    //user_pref("browser.newtabpage.activity-stream.system.showWeather", false); // hides Weather as an UI option
 user_pref("browser.newtabpage.activity-stream.feeds.section.topstories", false); // Recommended by Pocket
-      user_pref("browser.newtabpage.activity-stream.showSponsored", false); // Sponsored Stories [FF58+]  
+user_pref("browser.newtabpage.activity-stream.showSponsored", false); // Sponsored stories [FF58+]  
 user_pref("browser.newtabpage.activity-stream.showSponsoredCheckboxes", false); // [FF140+] Support Firefox
 //user_pref("browser.newtabpage.activity-stream.feeds.section.highlights", false); // Recent Activity [DEFAULT]
      //user_pref("browser.newtabpage.activity-stream.section.highlights.includeBookmarks", false);
      //user_pref("browser.newtabpage.activity-stream.section.highlights.includeDownloads", false);
      //user_pref("browser.newtabpage.activity-stream.section.highlights.includePocket", false);
      //user_pref("browser.newtabpage.activity-stream.section.highlights.includeVisited", false);
 //user_pref("browser.newtabpage.activity-stream.feeds.snippets", false); // [DEFAULT]
@@ -324,8 +320,9 @@ user_pref("browser.newtabpage.activity-stream.default.sites", "");
 * SECTION: POCKET                                                            *
 ******************************************************************************/
-// PREF: Disable built-in Pocket extension
+// PREF: disable built-in Pocket extension
-user_pref("extensions.pocket.enabled", false);
+// [1] https://support.mozilla.org/kb/future-of-pocket
 //user_pref("extensions.pocket.enabled", false); // DEFAULT
      //user_pref("extensions.pocket.api"," ");
      //user_pref("extensions.pocket.oAuthConsumerKey", " ");
      //user_pref("extensions.pocket.site", " ");
@@ -396,6 +393,17 @@ user_pref("browser.download.open_pdf_attachments_inline", true);
 // [NOTE] "page-width" not needed if using sidebar on load
 //user_pref("pdfjs.defaultZoomValue", page-width);
 /****************************************************************************
 * SECTION: DOM (DOCUMENT OBJECT MODEL)                                     *
 ****************************************************************************/
 // PREF: prevent scripts from moving and resizing open windows
 //user_pref("dom.disable_window_move_resize", true);
 // PREF: disable beforeunload event
 // [WHY] The method is commonly abused by scam and spyware sites.
 // [1] https://developer.mozilla.org/docs/Web/API/Window/beforeunload_event
 //user_pref("dom.disable_beforeunload", true);
 /****************************************************************************
 * SECTION: TAB BEHAVIOR                                                    *
 ****************************************************************************/
@@ -419,7 +427,7 @@ user_pref("browser.download.open_pdf_attachments_inline", true);
 // 0 = force all new windows opened by JavaScript into tabs
 // [NOTE] Most advertising popups also open in new windows with values set
 // [1] https://kb.mozillazine.org/About:config_entries
-//user_pref("browser.link.open_newwindow.restriction", 0);
+//user_pref("browser.link.open_newwindow.restriction", 2); // DEFAULT
 // PREF: override <browser.link.open_newwindow> for external links
 // Set if a different destination for external links is needed
@@ -471,9 +479,6 @@ user_pref("findbar.highlightAll", true);
 // [1] https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/10089
 //user_pref("middlemouse.contentLoadURL", false);
 // PREF: Prevent scripts from moving and resizing open windows
 //user_pref("dom.disable_window_move_resize", true);
 // PREF: insert new tabs after groups like it
 // true(default) = open new tabs to the right of the parent tab
 // false = new tabs are opened at the far right of the tab bar
@@ -1,10 +1,10 @@
-![GitHub Maintained](https://img.shields.io/badge/maintained-yes-green)![GitHub last commit](https://img.shields.io/github/last-commit/yokoffing/betterfox)![GitHub issues](https://img.shields.io/github/issues/yokoffing/betterfox)![GitHub closed issues](https://img.shields.io/github/issues-closed/yokoffing/betterfox)![GitHub repo size](https://img.shields.io/github/repo-size/yokoffing/betterfox)[![shields.io Stars](https://img.shields.io/github/stars/yokoffing/betterfox)](https://github.com/yokoffing/betterfox/stargazers)
+![Badge](https://hitscounter.dev/api/hit?url=https%3A%2F%2Fgithub.com%2Fyokoffing%2FBetterfox&label=&icon=github&color=%23198754&message=&style=flat&tz=US%2FEastern)![GitHub Maintained](https://img.shields.io/badge/maintained-yes-green)![GitHub last commit](https://img.shields.io/github/last-commit/yokoffing/betterfox)![GitHub issues](https://img.shields.io/github/issues/yokoffing/betterfox)![GitHub closed issues](https://img.shields.io/github/issues-closed/yokoffing/betterfox)![GitHub repo size](https://img.shields.io/github/repo-size/yokoffing/betterfox)[![shields.io Stars](https://img.shields.io/github/stars/yokoffing/betterfox)](https://github.com/yokoffing/betterfox/stargazers)
 # Betterfox
 [about:config](https://support.mozilla.org/en-US/kb/about-config-editor-firefox) tweaks to enhance [Mozilla Firefox](https://www.mozilla.org/en-US/firefox/new/).
 ## Made for everyday browsing
-[Faster](https://medium.com/@mihirgrand/comparing-popular-firefox-forks-6fa83fdfdaad#:~:text=31%25%20more%20than%20vanilla%20Firefox), more private and secure — without using third-party code.
+Make Firefox more private and secure — without using third-party code.
 Betterfox is an opinionated preference list inspired by the [law of diminishing returns](https://miro.medium.com/v2/resize:fit:1206/1*lcOcxriV_II_lZuXQYLoXg.jpeg) and the [minimum effective dose](https://medium.com/the-mission/less-is-more-the-minimum-effective-dose-e6d56625931e).
@@ -27,17 +27,14 @@ Betterfox is an opinionated preference list inspired by the [law of diminishing
 ## Simple configs
-`Fastfox`, `Securefox`, `Peskyfox`, and `Smoothfox` are guides to settings within Firefox.
+`Securefox`, `Peskyfox`, and `Smoothfox` are guides to settings within Firefox. The `user.js` — a configuration file that controls Firefox settings — is curated from these guides.
 The `user.js` — a configuration file that controls Firefox settings — is curated from these guides.
 | List      | Description |
 |:---------:|-------------|
-| [Fastfox](https://github.com/yokoffing/Betterfox/blob/main/Fastfox.js)   | Increase Firefox's browsing speed. Give Chrome a run for its money!|
+| [user.js](https://github.com/yokoffing/Betterfox/blob/main/user.js) | All the essentials. None of the breakage. This is your `user.js`. |
 | [Securefox](https://github.com/yokoffing/Betterfox/blob/main/Securefox.js) | Protect user data without causing site breakage. |
 | [Peskyfox](https://github.com/yokoffing/Betterfox/blob/main/Peskyfox.js)  | Provide a clean, distraction-free browsing experience. |
-| [Smoothfox](https://github.com/yokoffing/Betterfox/blob/main/Smoothfox.js) | Get Edge-like smooth scrolling on your favorite browser — or choose something more your style. |
+| [Smoothfox](https://github.com/yokoffing/Betterfox/blob/main/Smoothfox.js)<br>(optional) | Get Edge-like smooth scrolling on your favorite browser — or choose something more your style. |
 | [user.js](https://github.com/yokoffing/Betterfox/blob/main/user.js) | All the essentials. None of the breakage. This is your `user.js`. |
 ## Recognition
@@ -45,10 +42,11 @@ The `user.js` — a configuration file that controls Firefox settings — is cur
 > [!IMPORTANT]
 > While the browsers listed below incorporate Betterfox to some extent, they often modify it in ways that reduce its effectiveness. For optimal results, apply the `user.js` file even when using Firefox forks.
-* [Zen](https://github.com/zen-browser/desktop?tab=readme-ov-file) | [files](https://github.com/zen-browser/desktop/blob/stable/src/browser/app/profile/zen-browser.js) (July 2024)
+* [Zen](https://github.com/zen-browser/desktop?tab=readme-ov-file) | [files](https://github.com/zen-browser/desktop/tree/stable/prefs) (July 2024)
 * [FireDragon](https://github.com/dr460nf1r3/firedragon-browser/blob/master/README.md) | [files](https://github.com/dr460nf1r3/firedragon-browser/blob/55fc6e5029542cd90fabe23cb44c89568d74d006/firedragon.cfg#L822-L824) (Jan 2024?)
 * [Midori](https://github.com/goastian/midori-desktop/blob/ESR115/README.md) | [files](https://github.com/goastian/midori-desktop/blob/f3d8d96eb8e08f35a64e3c957bea4e839d7c7730/floorp/browser/components/userjsUtils.sys.mjs#L28-L33) (Dec 2023?)
 * [Mercury](https://github.com/Alex313031/Mercury/releases/tag/v.115.3.0) | [files](https://github.com/Alex313031/Mercury/commit/eb9600f9fb8f48c8f5b5c6f3264fbcdb5caff7f5) (Sep 2023)
-* [Waterfox](https://www.waterfox.net/en-US/docs/releases/G6.0/) | [files](https://github.com/WaterfoxCo/Waterfox/tree/current/waterfox/browser/app/profile) (Sep 2023)
+* [Waterfox](https://www.waterfox.net/docs/releases/G6.0/) | [files](https://github.com/WaterfoxCo/Waterfox/tree/current/waterfox/browser/app/profile) (Sep 2023)
 * [Floorp](https://github.com/Floorp-Projects/Floorp#-betterfox) <sup>[1](https://github.com/Floorp-Projects/Floorp/issues/233#issuecomment-1543557167) [2](https://blog.ablaze.one/3135/2023-04-01/)</sup> | [files](https://github.com/Floorp-Projects/Floorp/blob/ESR115/floorp/browser/components/preferences/userjs.inc.xhtml) (Apr 2023)
 * [Pulse](https://github.com/pulse-browser/browser#%EF%B8%8F-credits) | [files](https://github.com/pulse-browser/browser/tree/alpha/src/browser/app/profile) (Dec 2021)
 * [Ghostery Private Browser](https://github.com/ghostery/user-agent-desktop#community) <sup>[1](https://web.archive.org/web/20210509171835/https://www.ghostery.com/ghostery-dawn-update-more/) [2](https://web.archive.org/web/20210921114333/https://www.ghostery.com/ghostery-dawn-product-update/)</sup> | [files](https://github.com/ghostery/user-agent-desktop/tree/main/brands/ghostery/branding/pref) (Feb 2021)
@@ -66,6 +64,8 @@ The `user.js` — a configuration file that controls Firefox settings — is cur
 * [GhoSTORIES with Franz & Pete](https://anchor.fm/ghostories/episodes/S2E6-We-Talking-Ghostery-Dawn----Again-er0q02/a-a4o5vmh) | 17:05–18:40 (Feb 2021)
 ### Articles
 * [How I Set Up Firefox for True Privacy ](https://dtptips.com/how-i-set-up-firefox-for-true-privacy-hint-its-not-the-default-setup/) (Oct 2025)
 * [Phishing Bank Logins Over Plain HTTP in 2025](https://vrls.ws/posts/phishing-bank-logins-over-plain-http-in-2025/) (Oct 2025)
 * [Español] [Firefox is an excellent browser, but this small modification makes it much faster and more private](https://www.genbeta.com/a-fondo/firefox-excelente-navegador-esta-pequena-modificacion-hace-mucho-rapido-privado-asi-funciona-betterfox) (Jan 2025)
 * [Browsers for Daily Use](https://anhkhoakz.neocities.org/blog/browsers-for-daily-using/#firefox-but-hardened) (Jan 2024)
 * [Avoiding Manifest V3 – Escaping the Ad-Pocalypse](https://www.xbitlabs.com/avoiding-manifest-v3/) (Dec 2023)
@@ -103,7 +103,3 @@ If you like the project, leave a :star: (top right) and become a [stargazer](htt
 * Thanks to [Denperidge](https://github.com/Denperidge) for adding [`install.py`](https://github.com/yokoffing/Betterfox/blob/main/install.py) for advanced users in v.131.
 * A special thanks to [Alex Kontos](https://github.com/MrAlex94) of [Waterfox](https://github.com/WaterfoxCo/Waterfox) for his collaboration in v.116.
 * Many thanks to the 2021 [Ghostery](https://github.com/ghostery) team for testing Betterfox at scale in its early days.
 <div align='center'>
  <a href='https://www.websitecounterfree.com'><img src='https://www.websitecounterfree.com/c.php?d=9&id=19653&s=1' border='0' alt='Free Website Counter'></a><br / >
 since 23 July 2022</div>
@@ -3,7 +3,7 @@
 * Securefox                                                                *
 * "Natura non contristatur"                                                *     
 * priority: provide sensible security and privacy                          *
- * version: 137                                                             *
+ * version: 150                                                             *
 * url: https://github.com/yokoffing/Betterfox                              *
 * credit: Most prefs are reproduced and adapted from the arkenfox project  *
 * credit urL: https://github.com/arkenfox/user.js                          *
@@ -12,16 +12,16 @@
 /****************************************************************************
 * SECTION: TRACKING PROTECTION                                             *
 ****************************************************************************/
-
+// PREF: enable ETP Strict Mode [FF86+]
-// PREF: Enhanced Tracking Protection (ETP)
+// ETP Strict Mode enables Total Cookie Protection (TCP)
-// Tracking Content blocking will strip cookies and block all resource requests to domains listed in Disconnect.me.
+// [NOTE] Adding site exceptions disables all ETP protections for that site and increases the risk of
-// Firefox deletes all stored site data (incl. cookies, browser storage) if the site is a known tracker and hasn’t
+// cross-site state tracking e.g. exceptions for SiteA and SiteB means PartyC on both sites is shared
-// been interacted with in the last 30 days.
+// [1] https://blog.mozilla.org/security/2021/02/23/total-cookie-protection/
-// [ALLOWLIST] https://disconnect.me/trackerprotection/unblocked
+// [2] https://support.mozilla.org/en-US/kb/enhanced-tracking-protection-firefox-desktop
-// [NOTE] FF86: "Strict" tracking protection enables dFPI.
+// [3] https://www.reddit.com/r/firefox/comments/l7xetb/network_priority_for_firefoxs_enhanced_tracking/gle2mqn/?web2x&context=3
-// [1] https://support.mozilla.org/en-US/kb/enhanced-tracking-protection-firefox-desktop
+// [SETTING] to add site exceptions: Urlbar>ETP Shield
-// [2] https://www.reddit.com/r/firefox/comments/l7xetb/network_priority_for_firefoxs_enhanced_tracking/gle2mqn/?web2x&context=3
+// [SETTING] to manage site exceptions: Options>Privacy & Security>Enhanced Tracking Protection>Manage Exceptions
-user_pref("browser.contentblocking.category", "strict"); // [HIDDEN]
+user_pref("browser.contentblocking.category", "strict"); // [HIDDEN PREF]
 //user_pref("privacy.trackingprotection.enabled", true); // enabled with "Strict"
 //user_pref("privacy.trackingprotection.pbmode.enabled", true); // DEFAULT
 //user_pref("browser.contentblocking.customBlockList.preferences.ui.enabled", false); // DEFAULT
@@ -41,6 +41,21 @@ user_pref("browser.contentblocking.category", "strict"); // [HIDDEN]
 //user_pref("privacy.bounceTrackingProtection.mode", 1); // [FF131+] [ETP FF133+]
 // [1] https://searchfox.org/mozilla-central/source/toolkit/components/antitracking/bouncetrackingprotection/nsIBounceTrackingProtection.idl#11-23
 // PREF: disable ETP web compat features (about:compat) [FF93+]
 // [SETUP-HARDEN] Includes skip lists, heuristics (SmartBlock) and automatic grants
 // Opener and redirect heuristics are granted for 30 days, see [3]
 // [1] https://blog.mozilla.org/security/2021/07/13/smartblock-v2/
 // [2] https://hg.mozilla.org/mozilla-central/rev/e5483fd469ab#l4.12
 // [3] https://developer.mozilla.org/docs/Web/Privacy/State_Partitioning#storage_access_heuristics
    // user_pref("privacy.antitracking.enableWebcompat", false);
 // PREF: set ETP Strict/Custom exception lists (FF141+)
 // [SETTING] Options>Privacy & Security>Enhanced Tracking Protection>Strict/Custom>Fix major [baseline] | minor [convenience]
 // [1] https://support.mozilla.org/en-US/kb/manage-enhanced-tracking-protection-exceptions
 // [2] https://etp-exceptions.mozilla.org/
 // user_pref("privacy.trackingprotection.allow_list.baseline.enabled", true); // [DEFAULT: true]
 // user_pref("privacy.trackingprotection.allow_list.convenience.enabled", true); // [DEFAULT: true]
 // PREF: query stripping
 // Currently uses a small list [1]
 // We set the same query stripping list that Brave and LibreWolf uses [2]
@@ -61,22 +76,7 @@ user_pref("browser.contentblocking.category", "strict"); // [HIDDEN]
 // [2] https://www.youtube.com/watch?v=VE8SrClOTgw
 // [3] https://searchfox.org/mozilla-central/source/browser/extensions/webcompat/data/shims.js
 //user_pref("extensions.webcompat.enable_shims", true); // [HIDDEN] enabled with "Strict"
-//user_pref("extensions.webcompat.smartblockEmbeds.enabled", true); // enabled with "Strict"
+//user_pref("extensions.webcompat.smartblockEmbeds.enabled", true); // [DEFAULT FF137+]
 // PREF: allow embedded tweets and reddit posts [FF136+]
 // [TEST - reddit embed] https://www.pcgamer.com/amazing-halo-infinite-bugs-are-already-rolling-in/
 // [TEST - instagram embed] https://www.ndtv.com/entertainment/bharti-singh-and-husband-haarsh-limbachiyaa-announce-pregnancy-see-trending-post-2646359
 // [TEST - tweet embed] https://www.newsweek.com/cryptic-tweet-britney-spears-shows-elton-john-collab-may-date-back-2015-1728036
 // [TEST - tiktok embed] https://www.vulture.com/article/snl-adds-four-new-cast-members-for-season-48.html
 // [TEST - truthsocial embed] https://www.newsweek.com/donald-trump-congratulates-patrick-brittany-mahomes-new-baby-2027097
 // [1] https://www.reddit.com/r/firefox/comments/l79nxy/firefox_dev_is_ignoring_social_tracking_preference/gl84ukk
 // [2] https://www.reddit.com/r/firefox/comments/pvds9m/reddit_embeds_not_loading/
 //user_pref("urlclassifier.trackingSkipURLs", "embed.reddit.com, *.twitter.com, *.twimg.com"); // MANUAL [FF136+]
 //user_pref("urlclassifier.features.socialtracking.skipURLs", "*.twitter.com, *.twimg.com"); // MANUAL [FF136+]
 // PREF: allow embedded tweets, Instagram and Reddit posts, and TikTok embeds [before FF136+]
 //user_pref("urlclassifier.trackingSkipURLs", "*.reddit.com, *.twitter.com, *.twimg.com, *.tiktok.com"); // MANUAL
 //user_pref("urlclassifier.features.socialtracking.skipURLs", "*.instagram.com, *.twitter.com, *.twimg.com"); // MANUAL
 // PREF: lower the priority of network loads for resources on the tracking protection list [NIGHTLY]
 // [1] https://github.com/arkenfox/user.js/issues/102#issuecomment-298413904
@@ -121,6 +121,7 @@ user_pref("browser.contentblocking.category", "strict"); // [HIDDEN]
 // [5] https://hacks.mozilla.org/2021/02/introducing-state-partitioning/
 // [6] https://github.com/arkenfox/user.js/issues/1281
 // [7] https://hacks.mozilla.org/2022/02/improving-the-storage-access-api-in-firefox/
 // [8] https://blog.includesecurity.com/2025/04/cross-site-websocket-hijacking-exploitation-in-2025/
 //user_pref("network.cookie.cookieBehavior", 5); // DEFAULT FF103+
 //user_pref("network.cookie.cookieBehavior.optInPartitioning", true); // [ETP FF132+]
 //user_pref("browser.contentblocking.reject-and-isolate-cookies.preferences.ui.enabled", true); // DEFAULT
@@ -166,6 +167,7 @@ user_pref("browser.contentblocking.category", "strict"); // [HIDDEN]
 // [6] https://web.dev/samesite-cookies-explained/
 // [7] https://portswigger.net/web-security/csrf/bypassing-samesite-restrictions
 // [8] https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
 // [9] https://blog.includesecurity.com/2025/04/cross-site-websocket-hijacking-exploitation-in-2025/
 // [TEST] https://samesite-sandbox.glitch.me/
 //user_pref("network.cookie.sameSite.laxByDefault", true);
 //user_pref("network.cookie.sameSite.noneRequiresSecure", true); // [DEFAULT FF131+]
@@ -195,8 +197,9 @@ user_pref("browser.contentblocking.category", "strict"); // [HIDDEN]
 // PREF: remove temp files opened from non-PB windows with an external application
 // [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=302433,1738574
 // [2] https://github.com/arkenfox/user.js/issues/1732
 // [3] https://bugzilla.mozilla.org/302433
 user_pref("browser.download.start_downloads_in_tmp_dir", true); // [FF102+]
-user_pref("browser.helperApps.deleteTempFileOnExit", true);
+//user_pref("browser.helperApps.deleteTempFileOnExit", true); // DEFAULT [FF108]
 // PREF: disable UITour backend
 // This way, there is no chance that a remote page can use it.
@@ -270,12 +273,12 @@ user_pref("security.OCSP.enabled", 0);
 // CRLite is faster and more private than OCSP [2].
 // 0 = disabled
 // 1 = consult CRLite but only collect telemetry
-// 2 = consult CRLite and enforce both "Revoked" and "Not Revoked" results
+// 2 = consult CRLite and enforce both "Revoked" and "Not Revoked" results (default)
-// 3 = consult CRLite and enforce "Not Revoked" results, but defer to OCSP for "Revoked" [FF99+, default FF100+]
+// 3 = consult CRLite and enforce "Not Revoked" results, but defer to OCSP for "Revoked" (removed FF145)
 // [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=1429800,1670985,1753071
 // [2] https://blog.mozilla.org/security/tag/crlite/
 //user_pref("security.remote_settings.crlite_filters.enabled", true); // [DEFAULT: true FF137+]
-user_pref("security.pki.crlite_mode", 2);
+//user_pref("security.pki.crlite_mode", 2); // [DEFAULT: 2 FF142+]
 // PREF: HTTP Public Key Pinning (HPKP)
 // HPKP enhances the security of SSL certificates by associating
@@ -314,6 +317,13 @@ user_pref("security.pki.crlite_mode", 2);
 //user_pref("browser.contentanalysis.enabled", false); // [FF121+] [DEFAULT]
 //user_pref("browser.contentanalysis.default_result", 0; // [FF127+] [DEFAULT]
 // PREF: disable referrer and storage access for resources injected by content scripts [FF139+]
 user_pref("privacy.antitracking.isolateContentScriptResources", true);
 // PREF: disable CSP Level 2 Reporting [FF140+]
 // [1] https://github.com/yokoffing/Betterfox/issues/415
 user_pref("security.csp.reporting.enabled", false);
 /****************************************************************************
 * SECTION: SSL (Secure Sockets Layer) / TLS (Transport Layer Security)    *
 ****************************************************************************/
@@ -334,7 +344,7 @@ user_pref("security.ssl.treat_unsafe_negotiation_as_broken", true);
 // know that. Setting this pref to true is the only way for the
 // browser to ensure there will be no unsafe renegotiations on
 // the channel between the browser and the server.
-// [STATS] SSL Labs > Renegotiation Support (May 2024) reports over 99.7% of top sites have secure renegotiation [4].
+// [STATS] SSL Labs > Renegotiation Support (Nov 2025) reports almost 99.8% of top sites have secure renegotiation [4].
 // [1] https://wiki.mozilla.org/Security:Renegotiation
 // [2] https://datatracker.ietf.org/doc/html/rfc5746
 // [3] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555
@@ -342,6 +352,8 @@ user_pref("security.ssl.treat_unsafe_negotiation_as_broken", true);
 //user_pref("security.ssl.require_safe_negotiation", true);
 // PREF: display advanced information on Insecure Connection warning pages
 // This pref only works when it's possible to add an exception,
 // i.e. it doesn't work for HSTS discrepancies (https://subdomain.preloaded-hsts.badssl.com/)
 // [TEST] https://expired.badssl.com/
 user_pref("browser.xul.error_pages.expert_bad_cert", true);
@@ -402,9 +414,20 @@ user_pref("security.tls.enable_0rtt_data", false);
 * SECTION: DISK AVOIDANCE                                                  *
 ****************************************************************************/
-// PREF: set media cache in Private Browsing to in-memory
+// PREF: disk cache
 // [NOTE] If you think it helps performance, then feel free to override this.
 // [SETTINGS] See about:cache
 // More efficient to keep the browser cache instead of having to
 // re-download objects for the websites you visit frequently.
 // [1] https://www.janbambas.cz/new-firefox-http-cache-enabled/
 user_pref("browser.cache.disk.enable", false);
 // PREF: set media cache in Private Browsing to in-memory and increase its maximum size
 // [NOTE] MSE (Media Source Extensions) are already stored in-memory in PB
 // [1] https://hg.mozilla.org/mozilla-central/file/tip/modules/libpref/init/StaticPrefList.yaml#l9652
 // [2] https://github.com/arkenfox/user.js/pull/941#issuecomment-668278121
 user_pref("browser.privatebrowsing.forceMediaMemoryCache", true);
 user_pref("media.memory_cache_max_size", 65536); // 64 MB; default=8192; AF=65536
 // PREF: minimum interval (in ms) between session save operations
 // Firefox periodically saves the user's session so it can restore
@@ -433,10 +456,6 @@ user_pref("browser.sessionstore.interval", 60000); // 1 minute; default=15000 (1
 // Favicons are stored as .ico files in profile_dir\shortcutCache.
 //user_pref("browser.shell.shortcutFavicons", false);
 // PREF: remove temp files opened with an external application
 // [1] https://bugzilla.mozilla.org/302433
 //user_pref("browser.helperApps.deleteTempFileOnExit", true); // DEFAULT [FF108]
 // PREF: disable page thumbnails capturing
 // Page thumbnails are only used in chrome/privileged contexts.
 //user_pref("browser.pagethumbnails.capturing_disabled", true); // [HIDDEN PREF]
@@ -484,6 +503,14 @@ user_pref("browser.sessionstore.interval", 60000); // 1 minute; default=15000 (1
 // PREF: purge session icon in Private Browsing windows
 user_pref("browser.privatebrowsing.resetPBM.enabled", true);
 // PREF: delete files downloaded in Private Browsing when all private windows are closed
 // When downloading a file in private browsing mode, the user will be prompted
 // to chose whether they want to keep or delete files that are downloaded
 // while in private browsing. 
 //user_pref("browser.download.enableDeletePrivate", true);
 //user_pref("browser.download.deletePrivateChosen", true);
 //user_pref("browser.download.deletePrivate", true);
 /******************************************************************************
 * SECTION: SHUTDOWN & SANITIZING                                             *
 ******************************************************************************/
@@ -541,6 +568,128 @@ user_pref("privacy.history.custom", true);
 // [WARNING] Be selective with what cookies you keep, as they also disable partitioning [1]
 // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1767271
 /****************************************************************************
 * SECTION: SPECULATIVE LOADING                                            *
 ****************************************************************************/
 // These are connections that are not explicitly asked for (e.g., clicked on).
 // [1] https://developer.mozilla.org/en-US/docs/Web/Performance/Speculative_loading
 // [NOTE] FF85+ partitions (isolates) pooled connections, prefetch connections,
 // pre-connect connections, speculative connections, TLS session identifiers,
 // and other connections. We can take advantage of the speed of pre-connections
 // while preserving privacy. Users may relax hardening to maximize their preference.
 // For more information, see SecureFox: "PREF: State Paritioning" and "PREF: Network Partitioning".
 // [NOTE] To activate and increase network predictions, go to settings in uBlock Origin and uncheck:
 // - "Disable pre-fetching (to prevent any connection for blocked network requests)"
 // [NOTE] Add prefs to "MY OVERRIDES" section and uncomment to enable them in your user.js.
 // PREF: link-mouseover opening connection to linked server
 // When accessing content online, devices use sockets as endpoints.
 // The global limit on half-open sockets controls how many speculative
 // connection attempts can occur at once when starting new connections [3].
 // If the user follows through, pages can load faster since some
 // work was done in advance. Firefox opens predictive connections
 // to sites when hovering over New Tab thumbnails or starting a
 // URL Bar search [1] and hyperlinks within a page [2].
 // [NOTE] DNS (if enabled), TCP, and SSL handshakes are set up in advance,
 // but page contents are not downloaded until a click on the link is registered.
 // [1] https://support.mozilla.org/en-US/kb/how-stop-firefox-making-automatic-connections?redirectslug=how-stop-firefox-automatically-making-connections&redirectlocale=en-US#:~:text=Speculative%20pre%2Dconnections
 // [2] https://news.slashdot.org/story/15/08/14/2321202/how-to-quash-firefoxs-silent-requests
 // [3] https://searchfox.org/mozilla-central/rev/028c68d5f32df54bca4cf96376f79e48dfafdf08/modules/libpref/init/all.js#1280-1282
 // [4] https://www.keycdn.com/blog/resource-hints#prefetch
 // [5] https://3perf.com/blog/link-rels/#prefetch
 user_pref("network.http.speculative-parallel-limit", 0);
 // PREF: DNS prefetching for HTMLLinkElement <link rel="dns-prefetch">
 // Used for cross-origin connections to provide small performance improvements.
 // You can enable rel=dns-prefetch for the HTTPS document without prefetching
 // DNS for anchors, whereas the latter makes more specualtive requests [5].
 // [1] https://bitsup.blogspot.com/2008/11/dns-prefetching-for-firefox.html
 // [2] https://css-tricks.com/prefetching-preloading-prebrowsing/#dns-prefetching
 // [3] https://www.keycdn.com/blog/resource-hints#2-dns-prefetching
 // [4] http://www.mecs-press.org/ijieeb/ijieeb-v7-n5/IJIEEB-V7-N5-2.pdf
 // [5] https://bugzilla.mozilla.org/show_bug.cgi?id=1596935#c28
 user_pref("network.dns.disablePrefetch", true);
    user_pref("network.dns.disablePrefetchFromHTTPS", true); // [FF127+ false]
 // PREF: DNS prefetch for HTMLAnchorElement (speculative DNS)
 // Disable speculative DNS calls to prevent Firefox from resolving
 // hostnames for other domains linked on a page. This may eliminate
 // unnecessary DNS lookups, but can increase latency when following external links.
 // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1596935#c28
 // [2] https://github.com/arkenfox/user.js/issues/1870#issuecomment-2220773972
 //user_pref("dom.prefetch_dns_for_anchor_http_document", false); // [FF128+]
 //user_pref("dom.prefetch_dns_for_anchor_https_document", false); // DEFAULT [FF128+]
 // PREF: enable <link rel="preconnect"> tag and Link: rel=preconnect response header handling
 //user_pref("network.preconnect", true); // DEFAULT
 // PREF: preconnect to the autocomplete URL in the address bar
 // Whether to warm up network connections for autofill or search results.
 // Firefox preloads URLs that autocomplete when a user types into the address bar.
 // Connects to destination server ahead of time, to avoid TCP handshake latency.
 // [NOTE] Firefox will perform DNS lookup (if enabled) and TCP and TLS handshake,
 // but will not start sending or receiving HTTP data.
 // [1] https://www.ghacks.net/2017/07/24/disable-preloading-firefox-autocomplete-urls/
 user_pref("browser.urlbar.speculativeConnect.enabled", false);
 // PREF: mousedown speculative connections on bookmarks and history [FF98+]
 // Whether to warm up network connections for places:menus and places:toolbar.
 user_pref("browser.places.speculativeConnect.enabled", false);
 // PREF: network module preload <link rel="modulepreload"> [FF115+]
 // High-priority loading of current page JavaScript modules.
 // Used to preload high-priority JavaScript modules for strategic performance improvements.
 // Module preloading allows developers to fetch JavaScript modules and dependencies
 // earlier to accelerate page loads. The browser downloads, parses, and compiles modules
 // referenced by links with this attribute in parallel with other resources, rather
 // than sequentially waiting to process each. Preloading reduces overall download times.
 // Browsers may also automatically preload dependencies without firing extra events.
 // Unlike other pre-connection tags (except rel=preload), this tag is mandatory for the browser.
 // [1] https://developer.mozilla.org/en-US/docs/Web/HTML/Attributes/rel/modulepreload
 //user_pref("network.modulepreload", true); // DEFAULT
 // PREF: link prefetching <link rel="prefetch">
 // Pre-populates the HTTP cache by prefetching same-site future navigation
 // resources or subresources used on those pages.
 // Enabling link prefetching allows Firefox to preload pages tagged as important.
 // The browser prefetches links with the prefetch-link tag, fetching resources
 // likely needed for the next navigation at low priority. When clicking a link
 // or loading a new page, prefetching stops and discards hints. Prefetching
 // downloads resources without executing them.
 // [NOTE] Since link prefetch uses the HTTP cache, it has a number of issues
 // with document prefetches, such as being potentially blocked by Cache-Control headers
 // (e.g. cache partitioning).
 // [1] https://developer.mozilla.org/en-US/docs/Glossary/Prefetch
 // [2] http://www.mecs-press.org/ijieeb/ijieeb-v7-n5/IJIEEB-V7-N5-2.pdf
 // [3] https://timkadlec.com/remembers/2020-06-17-prefetching-at-this-age/
 // [4] https://3perf.com/blog/link-rels/#prefetch
 // [5] https://developer.mozilla.org/docs/Web/HTTP/Link_prefetching_FAQ
 user_pref("network.prefetch-next", false);
 // PREF: Fetch Priority API [FF119+]
 // Indicates whether the `fetchpriority` attribute for elements which support it.
 // [1] https://web.dev/articles/fetch-priority
 // [2] https://nitropack.io/blog/post/priority-hints
 // [2] https://developer.mozilla.org/en-US/docs/Web/API/HTMLImageElement/fetchPriority
 // [3] https://developer.mozilla.org/en-US/docs/Web/API/HTMLLinkElement/fetchPriority
 //user_pref("network.fetchpriority.enabled", true);
 // PREF: early hints [FF120+]
 // [1] https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/103
 // [2] https://developer.chrome.com/blog/early-hints/
 // [3] https://blog.cloudflare.com/early-hints/
 // [4] https://blog.cloudflare.com/early-hints-performance/
 //user_pref("network.early-hints.enabled", true);
 // PREF: `Link: rel=preconnect` in 103 Early Hint response [FF120+]
 // Used to warm most critical cross-origin connections to provide
 // performance improvements when connecting to them.
 // [NOTE] When 0, this is limited by "network.http.speculative-parallel-limit".
 //user_pref("network.early-hints.preconnect.enabled", true);
 //user_pref("network.early-hints.preconnect.max_connections", 10); // DEFAULT
 /******************************************************************************
 * SECTION: SEARCH / URL BAR                                                 *
 ******************************************************************************/
@@ -580,11 +729,13 @@ user_pref("browser.search.separatePrivateDefault.ui.enabled", true);
    //user_pref("browser.search.separatePrivateDefault", true); // DEFAULT
 // PREF: enable option to add custom search engine
 // Before FF140, this pref was hidden.
 // [SETTINGS] Settings -> Search -> Search Shortcuts -> Add
 // [EXAMPLE] https://search.brave.com/search?q=%s
 // [EXAMPLE] https://lite.duckduckgo.com/lite/?q=%s
 // [1] https://reddit.com/r/firefox/comments/xkzswb/adding_firefox_search_engine_manually/
-user_pref("browser.urlbar.update2.engineAliasRefresh", true); // HIDDEN
+// [2] https://www.mozilla.org/en-US/firefox/140.0/releasenotes/
 //user_pref("browser.urlbar.update2.engineAliasRefresh", true); // [DEFAULT FF140+]
 // PREF: disable live search suggestions (Google, Bing, etc.)
 // [WARNING] Search engines keylog every character you type from the URL bar.
@@ -641,16 +792,14 @@ user_pref("network.IDN_show_punycode", true);
 /******************************************************************************
 * SECTION: HTTPS-FIRST POLICY                          *
 ******************************************************************************/
 // PREF: HTTPS-First Policy
 // Firefox attempts to make all connections to websites secure,
 // and falls back to insecure connections only when a website
 // does not support it. Unlike HTTPS-Only Mode, Firefox
 // will NOT ask for your permission before connecting to a website
 // that doesn’t support secure connections.
-// As of August 2023, Google estimates that 5-10% of traffic
+// As of October 2025, Google estimates that 3-5% of traffic
-// has remained on HTTP, allowing attackers to eavesdrop
+// is insecure, allowing attackers to eavesdrop on or change that data [8].
 // on or change that data [6].
 // [NOTE] HTTPS-Only Mode needs to be disabled for HTTPS First to work.
 // [TEST] http://example.com [upgrade]
 // [TEST] http://httpforever.com/ [no upgrade]
@@ -660,10 +809,22 @@ user_pref("network.IDN_show_punycode", true);
 // [4] https://web.dev/why-https-matters/
 // [5] https://www.cloudflare.com/learning/ssl/why-use-https/
 // [6] https://blog.chromium.org/2023/08/towards-https-by-default.html
 // [7] https://attackanddefense.dev/2025/03/31/https-first-in-firefox-136.html
 // [8] https://security.googleblog.com/2025/10/https-by-default.html
 //user_pref("dom.security.https_first", true); // [DEFAULT FF136+]
 //user_pref("dom.security.https_first_pbm", true); // [DEFAULT FF91+]
 //user_pref("dom.security.https_first_schemeless", true); // [FF120+] [DEFAULT FF129+]
 // PREF: block insecure passive content (images) on HTTPS pages
 // [WARNING] This preference blocks all mixed content, including upgradable.
 // Firefox still attempts an HTTP connection if it can't find a secure one,
 // even with HTTPS First Policy. Although rare, this leaves a small risk of
 // a malicious image being served through a MITM attack.
 // Disable this pref if using HTTPS-Only Mode.
 // [NOTE] Enterprise users may need to enable this setting [1].
 // [1] https://blog.mozilla.org/security/2024/06/05/firefox-will-upgrade-more-mixed-content-in-version-127/
 //user_pref("security.mixed_content.block_display_content", true); // Defense-in-depth (see HTTPS-Only mode)
 /******************************************************************************
 * SECTION: HTTPS-ONLY MODE                              *
 ******************************************************************************/
@@ -672,9 +833,8 @@ user_pref("network.IDN_show_punycode", true);
 // by a server. Options to use HTTP are then provided.
 // [NOTE] When "https_only_mode" (all windows) is true,
 // "https_only_mode_pbm" (private windows only) is ignored.
-// As of August 2023, Google estimates that 5-10% of traffic
+// As of October 2025, Google estimates that 3-5% of traffic
-// has remained on HTTP, allowing attackers to eavesdrop
+// is insecure, allowing attackers to eavesdrop on or change that data [6].
 // on or change that data [5].
 // [SETTING] to add site exceptions: Padlock>HTTPS-Only mode>On/Off/Off temporarily
 // [SETTING] Privacy & Security>HTTPS-Only Mode
 // [TEST] http://example.com [upgrade]
@@ -684,17 +844,23 @@ user_pref("network.IDN_show_punycode", true);
 // [3] https://web.dev/why-https-matters/
 // [4] https://www.cloudflare.com/learning/ssl/why-use-https/
 // [5] https://blog.chromium.org/2023/08/towards-https-by-default.html
 // [6] https://security.googleblog.com/2025/10/https-by-default.html
-// PREF: enable HTTPS-only Mode
+// PREF: enable HTTPS-Only mode in all windows
-//user_pref("dom.security.https_only_mode_pbm", true); // Private Browsing windows only
+// When the top-level is HTTPS, insecure subresources are also upgraded (silent fail)
-//user_pref("dom.security.https_only_mode", true); // Normal + Private Browsing windows
+// [SETTING] to add site exceptions: Padlock>HTTPS-Only mode>On (after "Continue to HTTP Site")
 // [SETTING] Privacy & Security>HTTPS-Only Mode (and manage exceptions)
 // [TEST] http://example.com [upgrade]
 // [TEST] http://httpforever.com/ | http://http.rip [no upgrade]
 user_pref("dom.security.https_only_mode", true); // [FF76+]
    //user_pref("dom.security.https_only_mode_pbm", true); // [FF80+] Private Browsing windows only
 // PREF: offer suggestion for HTTPS site when available
 // [1] https://x.com/leli_gibts_scho/status/1371463866606059528
-//user_pref("dom.security.https_only_mode_error_page_user_suggestions", true);
+user_pref("dom.security.https_only_mode_error_page_user_suggestions", true);
 // PREF: HTTP background requests in HTTPS-only Mode
-// When attempting to upgrade, if the server doesn't respond within 3 seconds[=default time],
+// When attempting to upgrade, if the server doesn't respond within a few seconds,
 // Firefox sends HTTP requests in order to check if the server supports HTTPS or not.
 // This is done to avoid waiting for a timeout which takes 90 seconds.
 // Firefox only sends top level domain when falling back to http.
@@ -703,10 +869,6 @@ user_pref("network.IDN_show_punycode", true);
 // [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=1642387,1660945
 // [2] https://blog.mozilla.org/attack-and-defense/2021/03/10/insights-into-https-only-mode/
 //user_pref("dom.security.https_only_mode_send_http_background_request", true); // DEFAULT
    //user_pref("dom.security.https_only_fire_http_request_background_timer_ms", 3000); // DEFAULT
 // PREF: disable HTTPS-Only mode for local resources
 //user_pref("dom.security.https_only_mode.upgrade_local", false); // DEFAULT
 /******************************************************************************
 * SECTION: DNS-over-HTTPS                                                    *
@@ -887,10 +1049,11 @@ user_pref("signon.privateBrowsingCapture.enabled", false);
 // PREF: limit (or disable) HTTP authentication credentials dialogs triggered by sub-resources [FF41+]
 // Hardens against potential credentials phishing.
 // [WARNING] Hardening this pref may prevent you from subscribing to SoGo calendars in Thunderbird 138
 // 0=don't allow sub-resources to open HTTP authentication credentials dialogs
 // 1=don't allow cross-origin sub-resources to open HTTP authentication credentials dialogs
 // 2=allow sub-resources to open HTTP authentication credentials dialogs (default)
-// [1] https://www.fxsitecompat.com/en-CA/docs/2015/http-auth-dialog-can-no-longer-be-triggered-by-cross-origin-resources/
+// [1] https://web.archive.org/web/20181123134351/https://www.fxsitecompat.com/en-CA/docs/2015/http-auth-dialog-can-no-longer-be-triggered-by-cross-origin-resources/
 user_pref("network.auth.subresource-http-auth-allow", 1);
 // PREF: prevent password truncation when submitting form data
@@ -902,6 +1065,14 @@ user_pref("editor.truncate_user_pastes", false);
 // [DO NOT TOUCH] Icons will double-up if the website implements it natively.
 //user_pref("layout.forms.reveal-password-button.enabled", true); // always show icon in password fields
 // PREF: disable automatic authentication on Microsoft sites [WINDOWS]
 // [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=1695693,1719301
 //user_pref("network.http.windows-sso.enabled", false); // DEFAULT
 // PREF: enforce no direct attestation in passkeys [FF144+]
 // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1981587 ***/
 //user_pref("security.webauthn.always_allow_direct_attestation", false); // [DEFAULT: false]
 /****************************************************************************
 * SECTION: ADDRESS + CREDIT CARD MANAGER                                   *
 ****************************************************************************/
@@ -913,32 +1084,6 @@ user_pref("editor.truncate_user_pastes", false);
 //user_pref("extensions.formautofill.addresses.enabled", false);
 //user_pref("extensions.formautofill.creditCards.enabled", false);
 /******************************************************************************
 * SECTION: MIXED CONTENT + CROSS-SITE                                       *
 ******************************************************************************/
 // PREF: block insecure passive content (images) on HTTPS pages
 // [WARNING] This preference blocks all mixed content, including upgradable.
 // Firefox still attempts an HTTP connection if it can't find a secure one,
 // even with HTTPS First Policy. Although rare, this leaves a small risk of
 // a malicious image being served through a MITM attack.
 // Disable this pref if using HTTPS-Only Mode.
 // [NOTE] Enterprise users may need to enable this setting [1].
 // [1] https://blog.mozilla.org/security/2024/06/05/firefox-will-upgrade-more-mixed-content-in-version-127/
 user_pref("security.mixed_content.block_display_content", true);
 // PREF: allow PDFs to load javascript
 // https://www.reddit.com/r/uBlockOrigin/comments/mulc86/firefox_88_now_supports_javascript_in_pdf_files/
 user_pref("pdfjs.enableScripting", false);
 // PREF: disable middle click on new tab button opening URLs or searches using clipboard [FF115+]
 // Enable if you're using LINUX.
 //user_pref("browser.tabs.searchclipboardfor.middleclick", false); // DEFAULT WINDOWS macOS
 // PREF: disable automatic authentication on Microsoft sites [WINDOWS]
 // [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=1695693,1719301
 //user_pref("network.http.windows-sso.enabled", false);
 /****************************************************************************
 * SECTION: EXTENSIONS                                                      *
 ****************************************************************************/
@@ -973,9 +1118,9 @@ user_pref("extensions.enabledScopes", 5); // [HIDDEN PREF]
 // Users may see a notification when running add-ons that are not monitored by Mozilla when they visit certain sites.
 // The notification informs them that “some extensions are not allowed” and were blocked from running on that site.
 // There's no details as to which sites are affected.
-// [1] https://support.mozilla.org/en-US/kb/quarantined-domains
+// [1] https://support.mozilla.org/kb/quarantined-domains
 // [2] https://www.ghacks.net/2023/07/04/firefox-115-new-esr-base-and-some-add-ons-may-be-blocked-from-running-on-certain-sites/
-//user_pref("extensions.quarantinedDomains.enabled", false);
+//user_pref("extensions.quarantinedDomains.enabled", true); // [DEFAULT: true]
 /******************************************************************************
 * SECTION: HEADERS / REFERERS                                               *
@@ -1113,6 +1258,61 @@ user_pref("privacy.userContext.ui.enabled", true);
    // Optionally, hide the setting which also disables the DRM prompt:
    //user_pref("browser.eme.ui.enabled", false);
 /******************************************************************************
 * SECTION: JIT & WASM                                                        *
 ******************************************************************************/
 // PREF: Just-In-Time Compilation
 // Around half of zero-day exploits are directly related to "just in time"
 // (JIT) compilers, and disabling that can greatly improve your protection against
 // these potential exploits.
 // [1] https://microsoftedge.github.io/edgevr/posts/Super-Duper-Secure-Mode/
 // [2] https://www.youtube.com/watch?v=i7qlZeDt9o4
 // PREF: Ion and Baseline JIT
 // [NOTE] When both Ion and JIT are disabled, and trustedprincipals
 // is enabled, then Ion can still be used by extensions [4].
 // Tor Browser doesn't even ship with these disabled by default.
 // [1] https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=firefox+jit
 // [2] https://microsoftedge.github.io/edgevr/posts/Super-Duper-Secure-Mode/
 // [3] https://support.microsoft.com/en-us/microsoft-edge/enhance-your-security-on-the-web-with-microsoft-edge-b8199f13-b21b-4a08-a806-daed31a1929d
 // [4] https://bugzilla.mozilla.org/show_bug.cgi?id=1599226
 // [5] https://wiki.mozilla.org/IonMonkey
 // [6] https://github.com/arkenfox/user.js/issues/1791#issuecomment-1891273681
 //user_pref("javascript.options.baselinejit", false); // DO NOT TOUCH
 //user_pref("javascript.options.ion", false);
 //user_pref("javascript.options.jit_trustedprincipals", true); // HIDDEN PREF
 // PREF: Blinterp (JIT-like)
 // You do not need to touch blinterp unless you want to go even slower
 // than the Baseline JIT (which I do not recommend).
 //user_pref("javascript.options.blinterp", false);
 // PREF: WebAssembly JIT [FF52+]
 // Vulnerabilities [1] have increasingly been found, including those known and fixed
 // in native programs years ago [2]. WASM has powerful low-level access, making
 // certain attacks (brute-force) and vulnerabilities more possible.
 // trustedprincipals: This controls whether WebAssembly is allowed in "privileged" contexts
 // (like your extensions or internal browser scripts).
 // [STATS] ~0.2% of websites, about half of which are for cryptomining / malvertising [2][3]
 // [1] https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=wasm
 // [2] https://spectrum.ieee.org/tech-talk/telecom/security/more-worries-over-the-security-of-web-assembly
 // [3] https://www.zdnet.com/article/half-of-the-websites-using-webassembly-use-it-for-malicious-purposes
 //user_pref("javascript.options.wasm", false);
    //user_pref("javascript.options.wasm_trustedprincipals", false);
    //user_pref("javascript.options.wasm_baselinejit", true); // DO NOT TOUCH
    //user_pref("javascript.options.wasm_optimizingjit", false);
 // PREF: Asm.js JIT [FF22+]
 // Asm.js is essentially the "ancestor" of WebAssembly. It was a strict subset of JavaScript
 // designed to allow browsers to pre-compile code into highly efficient machine instructions.
 // However, WebAssembly was created specifically to replace Asm.js and has done so almost entirely.
 // Disabling Asm.js removes the "legacy" risk surface without affecting your ability to run modern WebAssembly sites.
 // [1] http://asmjs.org/
 // [2] https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=asm.js
 // [3] https://rh0dev.github.io/blog/2017/the-return-of-the-jit/
 // [4] https://github.com/rh0dev/slides/blob/master/OffensiveCon2018_From_Assembly_to_JavaScript_and_back.pdf
 //user_pref("javascript.options.asmjs", false); // DEFAULT
 /******************************************************************************
 * SECTION: VARIOUS                                                          *
 ******************************************************************************/
@@ -1126,40 +1326,28 @@ user_pref("privacy.userContext.ui.enabled", true);
 // If this is less than 5, then pasting code into the web console is disabled.
 //user_pref("devtools.selfxss.count", 5);
-// PREF: disable asm.js [FF22+]
+// PREF: disable middle click on new tab button opening URLs or searches using clipboard [FF115+]
-// [WARNING] Disabling this pref may disrupt your browsing experience.
+// Enable if you're using LINUX.
-// [1] http://asmjs.org/
+//user_pref("browser.tabs.searchclipboardfor.middleclick", false); // DEFAULT WINDOWS macOS
 // [2] https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=asm.js
 // [3] https://rh0dev.github.io/blog/2017/the-return-of-the-jit/
 //user_pref("javascript.options.asmjs", false);
-// PREF: disable Ion and baseline JIT to harden against JS exploits
+// PREF: do not allow PDFs to load javascript
-// [NOTE] When both Ion and JIT are disabled, and trustedprincipals
+// [1] https://www.reddit.com/r/uBlockOrigin/comments/mulc86/firefox_88_now_supports_javascript_in_pdf_files/
 // is enabled, then Ion can still be used by extensions [4].
 // [WARNING] Disabling these prefs will disrupt your browsing experience [6].
 // Tor Browser doesn't even ship with these disabled by default.
 // [1] https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=firefox+jit
 // [2] https://microsoftedge.github.io/edgevr/posts/Super-Duper-Secure-Mode/
 // [3] https://support.microsoft.com/en-us/microsoft-edge/enhance-your-security-on-the-web-with-microsoft-edge-b8199f13-b21b-4a08-a806-daed31a1929d
 // [4] https://bugzilla.mozilla.org/show_bug.cgi?id=1599226
 // [5] https://wiki.mozilla.org/IonMonkey
 // [6] https://github.com/arkenfox/user.js/issues/1791#issuecomment-1891273681
 //user_pref("javascript.options.ion", false);
 //user_pref("javascript.options.baselinejit", false);
 //user_pref("javascript.options.jit_trustedprincipals", true); // [FF75+] [HIDDEN PREF]
-// PREF: disable WebAssembly [FF52+]
+// PREF: enforce PDFJS, disable PDFJS scripting
-// [WARNING] Disabling this pref may disrupt your browsing experience.
+// This setting controls if the option "Display in Firefox" is available in the setting below
-// Vulnerabilities [1] have increasingly been found, including those known and fixed
+// and by effect controls whether PDFs are handled in-browser or externally ("Ask" or "Open With").
-// in native programs years ago [2]. WASM has powerful low-level access, making
+// [WHY] pdfjs is lightweight, open source, and secure: the last exploit was June 2015 [1].
-// certain attacks (brute-force) and vulnerabilities more possible.
+// It doesn't break "state separation" of browser content (by not sharing with OS, independent apps).
-// [STATS] ~0.2% of websites, about half of which are for cryptomining / malvertising [2][3]
+// It maintains disk avoidance and application data isolation. It's convenient. You can still save to disk.
-// [1] https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=wasm
+// [NOTE] JS can still force a pdf to open in-browser by bundling its own code.
-// [2] https://spectrum.ieee.org/tech-talk/telecom/security/more-worries-over-the-security-of-web-assembly
+// [SETUP-CHROME] You may prefer a different pdf reader for security/workflow reasons.
-// [3] https://www.zdnet.com/article/half-of-the-websites-using-webassembly-use-it-for-malicious-purposes
+// [SETTING] General>Applications>Portable Document Format (PDF)
-//user_pref("javascript.options.wasm", false);
+// [1] https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=pdf.js+firefox
 // [2] https://www.reddit.com/r/uBlockOrigin/comments/mulc86/firefox_88_now_supports_javascript_in_pdf_files/
 //user_pref("pdfjs.disabled", false); // [DEFAULT: false]
 user_pref("pdfjs.enableScripting", false); // [FF86+]
-/******************************************************************************
+ /******************************************************************************
 * SECTION: SAFE BROWSING (SB)                                               *
 ******************************************************************************/
@@ -1174,6 +1362,11 @@ user_pref("privacy.userContext.ui.enabled", true);
 // [5] https://www.google.com/chrome/privacy/whitepaper.html#malware
 // [6] https://security.googleblog.com/2022/08/how-hash-based-safe-browsing-works-in.html
 // [FF147+] Firefox now supports the Safe Browsing V5 protocol and has migrated
 // from Safe Browsing V4 to the local list mode of Safe Browsing V5 protocol.
 // [1] https://developers.google.com/safe-browsing/reference
 // [2] https://developers.google.com/safe-browsing/reference/Local.List.Mode
 // PREF: Safe Browsing
 // [WARNING] Be sure to have alternate security measures if you disable SB! Adblockers do not count!
 // [SETTING] Privacy & Security>Security>... Block dangerous and deceptive content
@@ -1269,6 +1462,8 @@ user_pref("browser.safebrowsing.downloads.remote.enabled", false);
 // To add site exceptions: Page Info>Permissions>Receive Notifications
 // To manage site exceptions: Options>Privacy & Security>Permissions>Notifications>Settings
 // 0=always ask (default), 1=allow, 2=block
 // [1] https://easylinuxtipsproject.blogspot.com/p/security.html#ID5
 // [2] https://github.com/yokoffing/Betterfox/wiki/Common-Overrides#site-notifications
 user_pref("permissions.default.desktop-notification", 2);
 // PREF: default permission for Location Requests
@@ -1322,6 +1517,10 @@ user_pref("permissions.manager.defaultsUrl", "");
 // PREF: remove webchannel whitelist
 //user_pref("webchannel.allowObject.urlWhitelist", ""); // [DEFAULT FF132+]
 // PREF: disable metadata caching for installed add-ons by default
 // [1] https://blog.mozilla.org/addons/how-to-opt-out-of-add-on-metadata-updates/
 user_pref("extensions.getAddons.cache.enabled", false);
 /******************************************************************************
 * SECTION: TELEMETRY                                                   *
 ******************************************************************************/
@@ -1354,6 +1553,7 @@ user_pref("toolkit.telemetry.firstShutdownPing.enabled", false);
 // PREF: disable Telemetry Coverage
 // [1] https://blog.mozilla.org/data/2018/08/20/effectively-measuring-search-in-firefox/
 // [2] https://github.com/yokoffing/Betterfox/issues/443
 user_pref("toolkit.telemetry.coverage.opt-out", true); // [HIDDEN PREF]
 user_pref("toolkit.coverage.opt-out", true); // [FF64+] [HIDDEN PREF]
 user_pref("toolkit.coverage.endpoint.base", "");
@@ -1363,8 +1563,7 @@ user_pref("browser.newtabpage.activity-stream.feeds.telemetry", false);
 user_pref("browser.newtabpage.activity-stream.telemetry", false);
 // PREF: disable daily active users [FF136+]
-// [NOTE] Already disabled by main telemetry switch
+user_pref("datareporting.usage.uploadEnabled", false);
 //user_pref("datareporting.usage.uploadEnabled", false);
 /******************************************************************************
 * SECTION: EXPERIMENTS                                                      *
@@ -1398,15 +1597,16 @@ user_pref("browser.tabs.crashReporting.sendReport", false);
 ******************************************************************************/
 // PREF: disable Captive Portal detection
 // [WARNING] Do NOT use for mobile devices. May NOT be able to use Firefox on public wifi (hotels, coffee shops, etc).
 // [1] https://www.eff.org/deeplinks/2017/08/how-captive-portals-interfere-wireless-security-and-privacy
 // [2] https://wiki.mozilla.org/Necko/CaptivePortal
-user_pref("captivedetect.canonicalURL", "");
+//user_pref("captivedetect.canonicalURL", "");
-user_pref("network.captive-portal-service.enabled", false);
+//user_pref("network.captive-portal-service.enabled", false);
 // PREF: disable Network Connectivity checks
 // [WARNING] Do NOT use for mobile devices. May NOT be able to use Firefox on public wifi (hotels, coffee shops, etc).
 // [1] https://bugzilla.mozilla.org/1460537
-user_pref("network.connectivity-service.enabled", false);
+//user_pref("network.connectivity-service.enabled", false);
 // PREF: disable Privacy-Preserving Attribution [FF128+]
 // [NOTE] PPA disabled if main telemetry switches are disabled.
@@ -1432,7 +1632,6 @@ user_pref("network.connectivity-service.enabled", false);
 // PREF: assorted telemetry
 // [NOTE] Shouldn't be needed for user.js, but browser forks may want to disable these prefs.
 //user_pref("doh-rollout.disable-heuristics", true); // ensure DoH doesn't get enabled automatically
 //user_pref("dom.security.unexpected_system_load_telemetry_enabled", false);
 //user_pref("messaging-system.rsexperimentloader.enabled", false);
 //user_pref("network.trr.confirmation_telemetry_enabled", false);
@@ -1,3 +1,5 @@
 #!/usr/bin/env python3
 from datetime import datetime
 from os import name, getenv
 from json import loads
@@ -43,28 +45,61 @@ If there's any problems with the script, feel free to mention @Denperidge on Git
 re_find_version = compile(r"mozilla.org/.*?/firefox/(?P<version>[\d.]*?)/", IGNORECASE)
 re_find_overrides = r"(overrides|prefs).*\n(?P<space>\n)"
-FIREFOX_ROOT = Path.home().joinpath(".mozilla/firefox").absolute() if name != "nt" else Path(getenv("APPDATA") + "/Mozilla/Firefox/").resolve()
+INSTALLATIONS_TO_CHECK = [
-DEFAULT_FIREFOX_INSTALL = Path("C:/Program Files/Mozilla Firefox/" if name == "nt" else "")
+    # windows
-
+    {
-selected_if_backup = None
+        "command": [str(Path("C:/Program Files/Mozilla Firefox/firefox"))],
-selected_config = ""
+        "root": Path(getenv("APPDATA") or "").joinpath("Mozilla/Firefox").resolve(),
-userjs_path = None
+    },
    {
        "command": [str(Path(getenv("LOCALAPPDATA") or "").joinpath("Mozilla Firefox/firefox").resolve())],
        "root": Path(getenv("APPDATA") or "").joinpath("Mozilla/Firefox").resolve(),
    },
    # linux
    {
        "command": ["firefox"],
        "root": Path.home().joinpath(".mozilla/firefox").absolute(),
    },
    # flatpak
    {
        "command": ["flatpak", "run", "org.mozilla.firefox"],
        "root": Path.home().joinpath(".var/app/org.mozilla.firefox/.mozilla/firefox").absolute(),
    },
    # macOS
    {
        "command": ["/Applications/Firefox.app/Contents/MacOS/firefox"],
        "root": Path.home().joinpath("Library/Application Support/Firefox").absolute(),
    },
 ]
-def _get_firefox_version(bin="firefox"):
+# command is a list, eg. ["firefox"] or ["flatpak", "run", "org.mozilla.firefox"]
-    try:
+def _get_firefox_version(command):
-        ver_string = check_output([bin, "--version"], encoding="UTF-8")
+    ver_string = check_output(command + ["--version"], encoding="UTF-8")
-        return ver_string[ver_string.rindex(" ")+1:].strip()
+    return ver_string[ver_string.rindex(" ")+1:].strip()
    except FileNotFoundError:
        return _get_firefox_version(str(DEFAULT_FIREFOX_INSTALL.joinpath("firefox")))
-def _get_default_profile_folder():
+def _get_default_firefox_version_and_root():
-    config_path = FIREFOX_ROOT.joinpath("profiles.ini")
+    print("Searching for Firefox installation...")
    for installation in INSTALLATIONS_TO_CHECK:
        try:
            print(f"  '{' '.join(installation['command'])}': ", end="")
            version = _get_firefox_version(installation["command"])
            print("YES")
            print(f"Root: {installation['root']}")
            return version, installation["root"]
        except Exception:
            print("no")
            continue
    raise Exception("Firefox binary not found. Please ensure Firefox is installed and the path is correct.")
 def _get_default_profile_folder(firefox_root):
    config_path = firefox_root.joinpath("profiles.ini")
    print(f"Reading {config_path}...")
    config_parser = ConfigParser(strict=False)
-    config_parser.read(config_path)
+    config_parser.read(config_path, encoding = "utf8")
    path = None
    for section in config_parser.sections():
@@ -82,7 +117,7 @@ def _get_default_profile_folder():
                break
    if path is not None:
-        return FIREFOX_ROOT.joinpath(path)
+        return firefox_root.joinpath(path)
    else:
        raise Exception("Could not determine default Firefox profile! Exiting...")
@@ -123,16 +158,6 @@ def _get_latest_compatible_release(releases):
        if firefox_version in release["supported"]:
            return release
    return None
 def _get_firefox_version(bin="firefox"):
    try:
        ver_string = check_output([bin, "--version"], encoding="UTF-8")
        return ver_string[ver_string.rindex(" ")+1:].strip()
    except FileNotFoundError:
        default_path = str(DEFAULT_FIREFOX_INSTALL.joinpath("firefox"))
        if bin != default_path:  # Avoid infinite recursion
            return _get_firefox_version(default_path)
        else:
            raise Exception("Firefox binary not found. Please ensure Firefox is installed and the path is correct.")    
 def backup_profile(src):
    dest = f"{src}-backup-{datetime.today().strftime('%Y-%m-%d-%H-%M-%S')}"
@@ -149,10 +174,17 @@ def download_betterfox(url):
 def extract_betterfox(data, profile_folder):
    zipfile = ZipFile(data)
    userjs_zipinfo = None
    depth = 1 # default to firefox user.js living at root dir
    if args.browser != "firefox":
        depth = 2 # ignore the outside
    for file in zipfile.filelist:
        path = file.filename.split("/")
        if len(path)-1 != depth or (args.browser not in path and depth != 1) :
            continue
        if file.filename.endswith("user.js"):
            userjs_zipinfo = file
            userjs_zipinfo.filename = Path(userjs_zipinfo.filename).name
            break
    if not userjs_zipinfo:
        raise BaseException("Could not find user.js!")
@@ -176,23 +208,24 @@ def list_releases(releases, only_supported=False, add_index=False):
            print(f"{f'[{i}]' if add_index else ''}{'> ' if supported else '  '}{release['name'].ljust(20)}\t\t\tSupported: {','.join(release['supported'])}")
        i+=1
 def _press_enter_to_exit(args):
    if not args.no_wait_for_exit:
        input("Press ENTER to exit...")
 if __name__ == "__main__":
-    firefox_version = _get_firefox_version()
+    firefox_version, firefox_root = _get_default_firefox_version_and_root()
    selected_release = None
-    default_profile_folder = _get_default_profile_folder()
+    default_profile_folder = _get_default_profile_folder(firefox_root)
    argparser = ArgumentParser(
-    )
+    argparser = ArgumentParser()
    argparser.add_argument("--overrides", "-o", default=default_profile_folder.joinpath("user-overrides.js"), help="if the provided file exists, add overrides to user.js. Defaults to " + str(default_profile_folder.joinpath("user-overrides.js"))),
    advanced = argparser.add_argument_group("Advanced")
    advanced.add_argument("--betterfox-version", "-bv", default=None, help=f"Which version of Betterfox to install. Defaults to the latest compatible release for your installed Firefox version")
    advanced.add_argument("--profile-dir", "-p", "-pd", default=default_profile_folder, help=f"Which profile dir to install user.js in. Defaults to {default_profile_folder}")
    advanced.add_argument("--repository-owner", "-ro", default="yokoffing", help="owner of the Betterfox repository. Defaults to yokoffing")
    advanced.add_argument("--repository-name", "-rn", default="Betterfox", help="name of the Betterfox repository. Defaults to Betterfox")
    advanced.add_argument("--browser", "-b", default="firefox", help="Which browser should Betterfox install to. Defaults to firefox. Available options: firefox, zen, waterfox")
    disable = argparser.add_argument_group("Disable functionality")
    disable.add_argument("--no-backup", "-nb", action="store_true", default=False, help="disable backup of current profile (not recommended)"),
@@ -203,14 +236,17 @@ if __name__ == "__main__":
    modes.add_argument("--list-all", action="store_true", default=False, help=f"List all Betterfox releases")
    modes.add_argument("--interactive", "-i", action="store_true", default=False, help=f"Interactively select Betterfox version")
    behaviour = argparser.add_argument_group("Script behaviour")
    behaviour.add_argument("--no-wait-for-exit", "-nwfe", action="store_true", default=False, help="Disable 'Press ENTER to exit...' and exit immediately"),
    args = argparser.parse_args()
    releases = _get_releases(args.repository_owner, args.repository_name)
-
+    selected_release = None
    if args.list or args.list_all:
        list_releases(releases, args.list)
-        input("Press ENTER to exit...")
+        _press_enter_to_exit(args)
        exit()
    if not args.no_backup:
@@ -261,5 +297,5 @@ if __name__ == "__main__":
        else:
            print(f"Found no overrides in {args.overrides}")
-    input("Press ENTER to exit...")
+    _press_enter_to_exit(args)
@@ -19,10 +19,9 @@
 /** FASTFOX ***/
 user_pref("browser.sessionstore.restore_pinned_tabs_on_demand", true);
 user_pref("browser.sessionhistory.max_total_viewers", 4); // only remember # of pages in Back-Forward cache
 user_pref("network.http.max-persistent-connections-per-server", 20); // increase download connections
 /** SECUREFOX ***/
 user_pref("privacy.trackingprotection.allow_list.convenience.enabled", false); // disable Strict allowlist of convenience features
 user_pref("signon.rememberSignons", false); // disable password manager
 user_pref("extensions.formautofill.addresses.enabled", false); // disable address manager
 user_pref("extensions.formautofill.creditCards.enabled", false); // disable credit card manager
@@ -45,6 +44,12 @@ user_pref("identity.fxaccounts.enabled", false); // disable Firefox Sync
 user_pref("browser.firefox-view.feature-tour", "{\"screen\":\"\",\"complete\":true}"); // disable the Firefox View tour from popping up for new profiles
 user_pref("accessibility.force_disabled", 1); // disable Accessibility features
 user_pref("security.cert_pinning.enforcement_level", 2); // strict public key pinning
 user_pref("captivedetect.canonicalURL", ""); // disable captive portal detection
 user_pref("network.captive-portal-service.enabled", false); // disable captive portal detection
 user_pref("network.connectivity-service.enabled", false); // disable captive portal detection
 user_pref("browser.download.enableDeletePrivate", true); // Delete files downloaded in private browsing when all private windows are closed
 user_pref("browser.download.deletePrivateChosen", true); // Delete files downloaded in private browsing when all private windows are closed
 user_pref("browser.download.deletePrivate", true); // Delete files downloaded in private browsing when all private windows are closed
 /** PESKYFOX ***/
 user_pref("devtools.accessibility.enabled", false); // removes un-needed "Inspect Accessibility Properties" on right-click
@@ -138,3 +143,60 @@ user_pref("network.trr.mode", 2); // enable TRR (with System fallback)
 user_pref("network.trr.max-fails", 5); // lower max attempts to use DoH
 user_pref("geo.provider.use_geoclue", false); // [LINUX]
 user_pref("pdfjs.defaultZoomValue", "page-width"); // PDF zoom level
 /** DELETE IF NOT WATERFOX ***/
 // PREF: improve font rendering by using DirectWrite everywhere like Chrome [WINDOWS]
 user_pref("gfx.font_rendering.cleartype_params.rendering_mode", 5);
 user_pref("gfx.font_rendering.cleartype_params.cleartype_level", 100);
 user_pref("gfx.font_rendering.cleartype_params.enhanced_contrast", 100);
 user_pref("gfx.font_rendering.directwrite.use_gdi_table_loading", false);
 // UI
 user_pref("browser.urlbar.scotchBonnet.enableOverride", false); // disable unified search button
 user_pref("identity.fxaccounts.enabled", false); // disable Firefox Sync and profiles
 user_pref("browser.profiles.enabled", false); // disable Firefox Sync and profiles
 /** FASTFOX ***/
 user_pref("network.http.rcwn.enabled", false);
 //user_pref("network.http.pacing.requests.enabled", false); // pacing requests
 user_pref("browser.sessionhistory.max_total_viewers", 4); // default=8
 // PREF: adjust DNS expiration time
 // [ABOUT] about:networking#dns
 // [NOTE] These prefs will be ignored by DNS resolver if using DoH/TRR.
 user_pref("network.dnsCacheExpiration", 3600); // keep entries for 1 hour; default=60
 user_pref("browser.sessionstore.interval", 900000); // save session every 15 minutes
 /** SECUREFOX ***/
 user_pref("signon.rememberSignons", false); // disable password manager
 user_pref("extensions.formautofill.addresses.enabled", false); // disable address manager
 user_pref("extensions.formautofill.creditCards.enabled", false); // disable credit card manager
 user_pref("accessibility.force_disabled", 1); // disable Accessibility features
 user_pref("dom.security.https_only_mode", false); // disable HTTPS Only in normal windows
 user_pref("dom.security.https_only_mode_pbm", true); // HTTPS Only in PB windows
 user_pref("media.eme.enabled", false); // disable DRM
 user_pref("browser.eme.ui.enabled", false); // hide the UI setting; this also disables the DRM prompt 
 user_pref("network.trr.max-fails", 5); // lower max attempts to use DoH
 // PREF: disable using the OS's geolocation service
 //user_pref("geo.provider.ms-windows-location", false); // [WINDOWS]
 //user_pref("geo.provider.use_corelocation", false); // [MAC]
 //user_pref("geo.provider.use_geoclue", false); // [FF102+] [LINUX]
 user_pref("privacy.userContext.enabled", false); // disable Container Tabs
 /** PESKYFOX ***/
 user_pref("browser.bookmarks.max_backups", 0); // minimize disk use; manually back-up
 user_pref("view_source.wrap_long_lines", true);  // wrap source lines
 user_pref("devtools.debugger.ui.editor-wrapping", true);  // wrap lines in devtools
 user_pref("browser.zoom.full", false); // text-only zoom, not all elements on page
 user_pref("layout.word_select.eat_space_to_next_word", false); // do not select the space next to a word when selecting a word
 user_pref("ui.key.menuAccessKey", 0); // remove underlined characters from various settings
 user_pref("general.autoScroll", false); // disable unintentional behavior for middle click
 user_pref("ui.SpellCheckerUnderlineStyle", 1); // [HIDDEN] dots for spell check errors
 user_pref("reader.parse-on-load.enabled", false); // disable reader mode
@@ -6,7 +6,6 @@
        "DisableFirefoxStudies": true,
        "DisableTelemetry": true,
        "DisableFeedbackCommands": true,
        "DisablePocket": true,
        "DisableSetDesktopBackground": true,
        "DisableDeveloperTools": false,
        "DontCheckDefaultBrowser": true,
@@ -15,6 +14,15 @@
            "ProviderURL": "",
            "Locked": false
        },
        "FirefoxHome": {
          "SponsoredStories": false,
          "SponsoredTopSites": false,
          "Stories": false
        },
        "GenerativeAI": {
          "Enabled": false
        },
        "ManualAppUpdateOnly": false,
        "ManualAppUpdateOnly_comment": "Change to true to disable auto-updates.",
        "NoDefaultBookmarks": true,
@@ -36,7 +44,8 @@
            "PreventInstalls": false,
            "Remove": [
                "Amazon.com",
-                "eBay"
+                "eBay",
                "Perplexity"
            ],
            "Default": "DuckDuckGo",
            "Add": [
@@ -10,62 +10,23 @@
 /****************************************************************************
 * Betterfox                                                                *
 * "Ad meliora"                                                             *
- * version: 137                                                             *
+ * version: 150                                                             *
 * url: https://github.com/yokoffing/Betterfox                              *
 ****************************************************************************/
 /****************************************************************************
 * SECTION: FASTFOX                                                         *
 ****************************************************************************/
 /** GENERAL ***/
 user_pref("content.notify.interval", 100000);
 /** GFX ***/
 user_pref("gfx.canvas.accelerated.cache-size", 512);
 user_pref("gfx.content.skia-font-cache-size", 20);
 /** DISK CACHE ***/
 user_pref("browser.cache.disk.enable", false);
 /** MEDIA CACHE ***/
 user_pref("media.memory_cache_max_size", 65536);
 user_pref("media.cache_readahead_limit", 7200);
 user_pref("media.cache_resume_threshold", 3600);
 /** IMAGE CACHE ***/
 user_pref("image.mem.decode_bytes_at_a_time", 32768);
 /** NETWORK ***/
 user_pref("network.http.max-connections", 1800);
 user_pref("network.http.max-persistent-connections-per-server", 10);
 user_pref("network.http.max-urgent-start-excessive-connections-per-host", 5);
 user_pref("network.http.pacing.requests.enabled", false);
 user_pref("network.dnsCacheExpiration", 3600);
 user_pref("network.ssl_tokens_cache_capacity", 10240);
 /** SPECULATIVE LOADING ***/
 user_pref("network.dns.disablePrefetch", true);
 user_pref("network.dns.disablePrefetchFromHTTPS", true);
 user_pref("network.prefetch-next", false);
 user_pref("network.predictor.enabled", false);
 user_pref("network.predictor.enable-prefetch", false);
 /** EXPERIMENTAL ***/
 user_pref("layout.css.grid-template-masonry-value.enabled", true);
 /****************************************************************************
 * SECTION: SECUREFOX                                                       *
 ****************************************************************************/
 /** TRACKING PROTECTION ***/
 user_pref("browser.contentblocking.category", "strict");
 user_pref("browser.download.start_downloads_in_tmp_dir", true);
 user_pref("browser.helperApps.deleteTempFileOnExit", true);
 user_pref("browser.uitour.enabled", false);
 user_pref("privacy.globalprivacycontrol.enabled", true);
 /** OCSP & CERTS / HPKP ***/
 user_pref("security.OCSP.enabled", 0);
-user_pref("security.pki.crlite_mode", 2);
+user_pref("privacy.antitracking.isolateContentScriptResources", true);
 user_pref("security.csp.reporting.enabled", false);
 /** SSL / TLS ***/
 user_pref("security.ssl.treat_unsafe_negotiation_as_broken", true);
@@ -73,34 +34,43 @@ user_pref("browser.xul.error_pages.expert_bad_cert", true);
 user_pref("security.tls.enable_0rtt_data", false);
 /** DISK AVOIDANCE ***/
 user_pref("browser.cache.disk.enable", false);
 user_pref("browser.privatebrowsing.forceMediaMemoryCache", true);
 user_pref("media.memory_cache_max_size", 65536);
 user_pref("browser.sessionstore.interval", 60000);
 /** SHUTDOWN & SANITIZING ***/
 user_pref("browser.privatebrowsing.resetPBM.enabled", true);
 user_pref("privacy.history.custom", true);
 user_pref("browser.privatebrowsing.resetPBM.enabled", true);
 /** SPECULATIVE LOADING ***/
 user_pref("network.http.speculative-parallel-limit", 0);
 user_pref("network.dns.disablePrefetch", true);
 user_pref("network.dns.disablePrefetchFromHTTPS", true);
 user_pref("browser.urlbar.speculativeConnect.enabled", false);
 user_pref("browser.places.speculativeConnect.enabled", false);
 user_pref("network.prefetch-next", false);
 /** SEARCH / URL BAR ***/
 user_pref("browser.urlbar.trimHttps", true);
 user_pref("browser.urlbar.untrimOnUserInteraction.featureGate", true);
 user_pref("browser.search.separatePrivateDefault.ui.enabled", true);
 user_pref("browser.urlbar.update2.engineAliasRefresh", true);
 user_pref("browser.search.suggest.enabled", false);
 user_pref("browser.urlbar.quicksuggest.enabled", false);
 user_pref("browser.urlbar.groupLabels.enabled", false);
 user_pref("browser.formfill.enable", false);
 user_pref("network.IDN_show_punycode", true);
 /** HTTPS-ONLY MODE ***/
 user_pref("dom.security.https_only_mode", true);
 user_pref("dom.security.https_only_mode_error_page_user_suggestions", true);
 /** PASSWORDS ***/
 user_pref("signon.formlessCapture.enabled", false);
 user_pref("signon.privateBrowsingCapture.enabled", false);
 user_pref("network.auth.subresource-http-auth-allow", 1);
 user_pref("editor.truncate_user_pastes", false);
 /** MIXED CONTENT + CROSS-SITE ***/
 user_pref("security.mixed_content.block_display_content", true);
 user_pref("pdfjs.enableScripting", false);
 /** EXTENSIONS ***/
 user_pref("extensions.enabledScopes", 5);
@@ -110,6 +80,9 @@ user_pref("network.http.referer.XOriginTrimmingPolicy", 2);
 /** CONTAINERS ***/
 user_pref("privacy.userContext.ui.enabled", true);
 /** VARIOUS ***/
 user_pref("pdfjs.enableScripting", false);
 /** SAFE BROWSING ***/
 user_pref("browser.safebrowsing.downloads.remote.enabled", false);
@@ -119,6 +92,7 @@ user_pref("permissions.default.geo", 2);
 user_pref("geo.provider.network.url", "https://beacondb.net/v1/geolocate");
 user_pref("browser.search.update", false);
 user_pref("permissions.manager.defaultsUrl", "");
 user_pref("extensions.getAddons.cache.enabled", false);
 /** TELEMETRY ***/
 user_pref("datareporting.policy.dataSubmissionEnabled", false);
@@ -137,6 +111,7 @@ user_pref("toolkit.coverage.opt-out", true);
 user_pref("toolkit.coverage.endpoint.base", "");
 user_pref("browser.newtabpage.activity-stream.feeds.telemetry", false);
 user_pref("browser.newtabpage.activity-stream.telemetry", false);
 user_pref("datareporting.usage.uploadEnabled", false);
 /** EXPERIMENTS ***/
 user_pref("app.shield.optoutstudies.enabled", false);
@@ -147,16 +122,10 @@ user_pref("app.normandy.api_url", "");
 user_pref("breakpad.reportURL", "");
 user_pref("browser.tabs.crashReporting.sendReport", false);
 /** DETECTION ***/
 user_pref("captivedetect.canonicalURL", "");
 user_pref("network.captive-portal-service.enabled", false);
 user_pref("network.connectivity-service.enabled", false);
 /****************************************************************************
 * SECTION: PESKYFOX                                                        *
 ****************************************************************************/
 /** MOZILLA UI ***/
 user_pref("browser.privatebrowsing.vpnpromourl", "");
 user_pref("extensions.getAddons.showPane", false);
 user_pref("extensions.htmlaboutaddons.recommendations.enabled", false);
 user_pref("browser.discovery.enabled", false);
@@ -165,6 +134,7 @@ user_pref("browser.newtabpage.activity-stream.asrouter.userprefs.cfr.addons", fa
 user_pref("browser.newtabpage.activity-stream.asrouter.userprefs.cfr.features", false);
 user_pref("browser.preferences.moreFromMozilla", false);
 user_pref("browser.aboutConfig.showWarning", false);
 user_pref("browser.startup.homepage_override.mstone", "ignore");
 user_pref("browser.aboutwelcome.enabled", false);
 user_pref("browser.profiles.enabled", true);
@@ -173,24 +143,28 @@ user_pref("toolkit.legacyUserProfileCustomizations.stylesheets", true);
 user_pref("browser.compactmode.show", true);
 user_pref("browser.privateWindowSeparation.enabled", false); // WINDOWS
 /** AI ***/
 user_pref("browser.ai.control.default", "blocked");
 user_pref("browser.ml.enable", false);
 user_pref("browser.ml.chat.enabled", false);
 user_pref("browser.ml.chat.menu", false);
 user_pref("browser.tabs.groups.smart.enabled", false);
 user_pref("browser.ml.linkPreview.enabled", false);
 /** FULLSCREEN NOTICE ***/
 user_pref("full-screen-api.transition-duration.enter", "0 0");
 user_pref("full-screen-api.transition-duration.leave", "0 0");
 user_pref("full-screen-api.warning.timeout", 0);
 /** URL BAR ***/
 user_pref("browser.urlbar.unitConversion.enabled", true);
 user_pref("browser.urlbar.trending.featureGate", false);
 user_pref("dom.text_fragments.create_text_fragment.enabled", true);
 /** NEW TAB PAGE ***/
 user_pref("browser.newtabpage.activity-stream.default.sites", "");
 user_pref("browser.newtabpage.activity-stream.showSponsoredTopSites", false);
 user_pref("browser.newtabpage.activity-stream.feeds.section.topstories", false);
 user_pref("browser.newtabpage.activity-stream.showSponsored", false);
-
+user_pref("browser.newtabpage.activity-stream.showSponsoredCheckboxes", false);
 /** POCKET ***/
 user_pref("extensions.pocket.enabled", false);
 /** DOWNLOADS ***/
 user_pref("browser.download.manager.addToRecentDocs", false);
@@ -204,6 +178,13 @@ user_pref("browser.menu.showViewImageInfo", true);
 user_pref("findbar.highlightAll", true);
 user_pref("layout.word_select.eat_space_to_next_word", false);
 /****************************************************************************
 * SECTION: SMOOTHFOX                                                       *
 ****************************************************************************/
 // visit https://github.com/yokoffing/Betterfox/blob/main/Smoothfox.js
 // Enter your scrolling overrides below this line:
 /****************************************************************************
 * START: MY OVERRIDES                                                      *
 ****************************************************************************/
@@ -212,15 +193,6 @@ user_pref("layout.word_select.eat_space_to_next_word", false);
 // Enter your personal overrides below this line:
 /****************************************************************************
 * SECTION: SMOOTHFOX                                                       *
 ****************************************************************************/
 // visit https://github.com/yokoffing/Betterfox/blob/main/Smoothfox.js
 // Enter your scrolling overrides below this line:
 /****************************************************************************
 * END: BETTERFOX                                                           *
 ****************************************************************************/
@@ -0,0 +1,8 @@
 ### Betterfox Aqua
 #### A user.js for Waterfox
 Just FYI: There are some long-term issues with Waterfox where the browser doesn't load certain internal settings or resets prefs after restart. For examples, see https://github.com/BrowserWorks/waterfox/issues/3196 and https://github.com/BrowserWorks/waterfox/issues/3947.
 > [!IMPORTANT]
 > Fork-specific files are side projects and will not update every release. When in doubt, use the standard Firefox user.js.
 >
 > This is also a reminder that Waterfox is based on the [Firefox ESR](https://support.mozilla.org/kb/firefox-esr-release-cycle) release cycle.
@@ -0,0 +1,121 @@
 //
 /* You may copy+paste this file and use it as it is.
 *
 * If you make changes to your about:config while the program is running, the
 * changes will be overwritten by the user.js when the application restarts.
 *
 * To make lasting changes to preferences, you will have to edit the user.js.
 */
 /****************************************************************************
 * Betterfox Aqua                                                           *
 * "Ex nihilo nihil fit"                                                    *
 * version: 140.10                                                          *
 * url: https://github.com/yokoffing/Betterfox                              *
 ****************************************************************************/
 /****************************************************************************
 * SECTION: SECUREFOX                                                       *
 ****************************************************************************/
 /** TRACKING PROTECTION ***/
 user_pref("browser.contentblocking.category", "strict");
 user_pref("browser.download.start_downloads_in_tmp_dir", true);
 /** OCSP & CERTS / HPKP ***/
 user_pref("privacy.antitracking.isolateContentScriptResources", true); // needed for next ESR if not a default pref
 user_pref("security.csp.reporting.enabled", false);
 /** DISK AVOIDANCE ***/
 user_pref("browser.cache.disk.enable", false);
 //user_pref("browser.privatebrowsing.forceMediaMemoryCache", true); // default
 user_pref("media.memory_cache_max_size", 65536);
 user_pref("browser.sessionstore.interval", 60000);
 /** SHUTDOWN & SANITIZING ***/
 user_pref("privacy.history.custom", true);
 user_pref("browser.privatebrowsing.resetPBM.enabled", true);
 /** SPECULATIVE LOADING ***/
 user_pref("network.http.speculative-parallel-limit", 0);
 //user_pref("network.dns.disablePrefetch", true);
 //user_pref("network.dns.disablePrefetchFromHTTPS", true);
 user_pref("browser.urlbar.speculativeConnect.enabled", false);
 user_pref("browser.places.speculativeConnect.enabled", false);
 user_pref("network.prefetch-next", false);
 /** SEARCH / URL BAR ***/
 //user_pref("browser.urlbar.trimURLs", true); // FF default
 //user_pref("browser.urlbar.trimHttps", true); // optional
 //user_pref("browser.urlbar.untrimOnUserInteraction.featureGate", true); // optional
 user_pref("browser.search.suggest.enabled", false);
 //user_pref("browser.urlbar.quicksuggest.enabled", false);
 user_pref("browser.urlbar.groupLabels.enabled", false);
 user_pref("browser.formfill.enable", false);
 /** HTTPS-ONLY MODE ***/
 user_pref("dom.security.https_only_mode", true);
 user_pref("dom.security.https_only_mode_error_page_user_suggestions", true);
 /** PASSWORDS ***/
 user_pref("signon.formlessCapture.enabled", false);
 user_pref("signon.privateBrowsingCapture.enabled", false);
 /** EXTENSIONS ***/
 user_pref("extensions.enabledScopes", 5);
 /** MOZILLA ***/
 user_pref("permissions.default.desktop-notification", 2);
 //user_pref("permissions.default.geo", 2); // optional
 //user_pref("geo.provider.network.url", "https://beacondb.net/v1/geolocate"); // blank
 user_pref("browser.search.update", false);
 user_pref("permissions.manager.defaultsUrl", "");
 user_pref("extensions.getAddons.cache.enabled", false);
 /****************************************************************************
 * SECTION: PESKYFOX                                                        *
 ****************************************************************************/
 /** MOZILLA UI ***/
 user_pref("browser.shell.checkDefaultBrowser", false);
 user_pref("browser.startup.homepage_override.mstone", "ignore");
 user_pref("browser.aboutwelcome.enabled", false);
 /** THEME ADJUSTMENTS ***/
 user_pref("browser.privateWindowSeparation.enabled", false); // WINDOWS
 /** FULLSCREEN NOTICE ***/
 user_pref("full-screen-api.transition-duration.enter", "0 0");
 user_pref("full-screen-api.transition-duration.leave", "0 0");
 user_pref("full-screen-api.warning.timeout", 0);
 /** NEW TAB PAGE ***/
 user_pref("browser.newtabpage.activity-stream.default.sites", "");
 user_pref("browser.newtabpage.activity-stream.showSponsoredTopSites", false);
 user_pref("browser.newtabpage.activity-stream.feeds.section.topstories", false);
 user_pref("browser.newtabpage.activity-stream.showSponsoredCheckboxes", false);
 /** TAB BEHAVIOR ***/
 //user_pref("browser.link.open_newwindow.restriction", 2); // restore FF default
 /****************************************************************************
 * SECTION: SMOOTHFOX                                                       *
 ****************************************************************************/
 // visit https://github.com/yokoffing/Betterfox/blob/main/Smoothfox.js
 // Enter your scrolling overrides below this line:
 /****************************************************************************
 * START: MY OVERRIDES                                                      *
 ****************************************************************************/
 // visit https://github.com/yokoffing/Betterfox/wiki/Common-Overrides
 // visit https://github.com/yokoffing/Betterfox/wiki/Optional-Hardening
 // Enter your personal overrides below this line:
 /** WATERFOX-SPECIFIC ***/
 user_pref("cookiebanners.service.mode", 0); // project depreciated
 user_pref("cookiebanners.service.mode.privateBrowsing", 0); // project depreciated
 //user_pref("waterfox.blocker.ui.enabled", true); // new adblocker option
 //user_pref("waterfox.blocker.enabled", true);
 /****************************************************************************
 * END: BETTERFOX                                                           *
 ****************************************************************************/
@@ -10,50 +10,60 @@
 /****************************************************************************
 * BetterZen                                                                *
 * "Ex nihilo nihil fit"                                                    *
- * version: 137                                                             *
+ * version: 148                                                             *
 * url: https://github.com/yokoffing/Betterfox                              *
 ****************************************************************************/
 /****************************************************************************
 * SECTION: FASTFOX                                                         *
 ****************************************************************************/
 /** GFX ***/
 user_pref("gfx.canvas.accelerated.cache-items", 8192); // DEFAULT FF135+
 user_pref("gfx.canvas.accelerated.cache-size", 512);
 /** DISK CACHE ***/
 user_pref("browser.cache.disk.enable", false);
 /** NETWORK ***/
 user_pref("network.http.pacing.requests.enabled", false);
 /** SPECULATIVE LOADING ***/
 user_pref("network.dns.disablePrefetch", true);
 user_pref("network.dns.disablePrefetchFromHTTPS", true);
 user_pref("network.prefetch-next", false);
 user_pref("network.predictor.enabled", false);
 user_pref("network.predictor.enable-prefetch", false);
 /****************************************************************************
 * SECTION: SECUREFOX                                                       *
 ****************************************************************************/
 /** TRACKING PROTECTION ***/
 user_pref("browser.contentblocking.category", "strict");
 user_pref("browser.download.start_downloads_in_tmp_dir", true);
 user_pref("browser.uitour.enabled", false);
 user_pref("privacy.globalprivacycontrol.enabled", true);
 /** OCSP & CERTS / HPKP ***/
 user_pref("security.OCSP.enabled", 0);
-user_pref("security.pki.crlite_mode", 2);
+user_pref("privacy.antitracking.isolateContentScriptResources", true);
 user_pref("security.csp.reporting.enabled", false);
 /** SSL / TLS ***/
 user_pref("security.ssl.treat_unsafe_negotiation_as_broken", true);
 user_pref("browser.xul.error_pages.expert_bad_cert", true);
 user_pref("security.tls.enable_0rtt_data", false);
 /** DISK AVOIDANCE ***/
 user_pref("browser.cache.disk.enable", false);
 user_pref("browser.privatebrowsing.forceMediaMemoryCache", true);
 user_pref("media.memory_cache_max_size", 65536);
 user_pref("browser.sessionstore.interval", 60000);
 /** SHUTDOWN & SANITIZING ***/
 user_pref("browser.privatebrowsing.resetPBM.enabled", true);
 user_pref("privacy.history.custom", true);
 user_pref("browser.privatebrowsing.resetPBM.enabled", true);
 /** SPECULATIVE LOADING ***/
 user_pref("network.http.speculative-parallel-limit", 0);
 user_pref("network.dns.disablePrefetch", true);
 user_pref("network.dns.disablePrefetchFromHTTPS", true);
 user_pref("browser.urlbar.speculativeConnect.enabled", false);
 user_pref("browser.places.speculativeConnect.enabled", false);
 user_pref("network.prefetch-next", false);
 /** SEARCH / URL BAR ***/
 user_pref("browser.urlbar.trimHttps", true);
 user_pref("browser.urlbar.untrimOnUserInteraction.featureGate", true);
 user_pref("browser.search.separatePrivateDefault.ui.enabled", true);
 user_pref("browser.search.suggest.enabled", false);
 user_pref("browser.urlbar.quicksuggest.enabled", false);
 user_pref("browser.urlbar.groupLabels.enabled", false);
 user_pref("browser.formfill.enable", false);
 user_pref("network.IDN_show_punycode", true);
 /** HTTPS-ONLY MODE ***/
 user_pref("dom.security.https_only_mode", true);
 user_pref("dom.security.https_only_mode_error_page_user_suggestions", true);
 /** PASSWORDS ***/
 user_pref("signon.formlessCapture.enabled", false);
@@ -61,9 +71,18 @@ user_pref("signon.privateBrowsingCapture.enabled", false);
 user_pref("network.auth.subresource-http-auth-allow", 1);
 user_pref("editor.truncate_user_pastes", false);
 /** EXTENSIONS ***/
 user_pref("extensions.enabledScopes", 5);
 /** HEADERS / REFERERS ***/
 user_pref("network.http.referer.XOriginTrimmingPolicy", 2);
 /** CONTAINERS ***/
 user_pref("privacy.userContext.ui.enabled", true);
 /** VARIOUS ***/
 user_pref("pdfjs.enableScripting", false);
 /** SAFE BROWSING ***/
 user_pref("browser.safebrowsing.downloads.remote.enabled", false);
@@ -73,28 +92,96 @@ user_pref("permissions.default.geo", 2);
 user_pref("geo.provider.network.url", "https://beacondb.net/v1/geolocate");
 user_pref("browser.search.update", false);
 user_pref("permissions.manager.defaultsUrl", "");
 user_pref("extensions.getAddons.cache.enabled", false);
 /** TELEMETRY ***/
 user_pref("datareporting.policy.dataSubmissionEnabled", false);
 user_pref("datareporting.healthreport.uploadEnabled", false);
 user_pref("toolkit.telemetry.unified", false);
 user_pref("toolkit.telemetry.enabled", false);
 user_pref("toolkit.telemetry.server", "data:,");
 user_pref("toolkit.telemetry.archive.enabled", false);
 user_pref("toolkit.telemetry.newProfilePing.enabled", false);
 user_pref("toolkit.telemetry.shutdownPingSender.enabled", false);
 user_pref("toolkit.telemetry.updatePing.enabled", false);
 user_pref("toolkit.telemetry.bhrPing.enabled", false);
 user_pref("toolkit.telemetry.firstShutdownPing.enabled", false);
 user_pref("toolkit.telemetry.coverage.opt-out", true);
 user_pref("toolkit.coverage.opt-out", true);
 user_pref("toolkit.coverage.endpoint.base", "");
 user_pref("browser.newtabpage.activity-stream.feeds.telemetry", false);
 user_pref("browser.newtabpage.activity-stream.telemetry", false);
 user_pref("datareporting.usage.uploadEnabled", false);
 /** EXPERIMENTS ***/
 user_pref("app.shield.optoutstudies.enabled", false);
 user_pref("app.normandy.enabled", false);
 user_pref("app.normandy.api_url", "");
 /** CRASH REPORTS ***/
 user_pref("breakpad.reportURL", "");
 user_pref("browser.tabs.crashReporting.sendReport", false);
 /****************************************************************************
 * SECTION: PESKYFOX                                                        *
 ****************************************************************************/
 /** MOZILLA UI ***/
 user_pref("extensions.getAddons.showPane", false);
 user_pref("extensions.htmlaboutaddons.recommendations.enabled", false);
 user_pref("browser.discovery.enabled", false);
 user_pref("browser.shell.checkDefaultBrowser", false);
 user_pref("browser.newtabpage.activity-stream.asrouter.userprefs.cfr.addons", false);
 user_pref("browser.newtabpage.activity-stream.asrouter.userprefs.cfr.features", false);
 user_pref("browser.preferences.moreFromMozilla", false);
 user_pref("browser.aboutConfig.showWarning", false);
 user_pref("browser.startup.homepage_override.mstone", "ignore");
 user_pref("browser.aboutwelcome.enabled", false);
 user_pref("browser.profiles.enabled", true);
 /** THEME ADJUSTMENTS ***/
 user_pref("toolkit.legacyUserProfileCustomizations.stylesheets", true);
 user_pref("browser.compactmode.show", true);
 user_pref("browser.privateWindowSeparation.enabled", false); // WINDOWS
 /** AI ***/
 user_pref("browser.ml.enable", false);
 user_pref("browser.ml.chat.enabled", false);
 user_pref("browser.ml.chat.menu", false);
 user_pref("browser.tabs.groups.smart.enabled", false);
 user_pref("browser.ml.linkPreview.enabled", false);
 /** FULLSCREEN NOTICE ***/
 user_pref("full-screen-api.transition-duration.enter", "0 0");
 user_pref("full-screen-api.transition-duration.leave", "0 0");
 user_pref("full-screen-api.warning.timeout", 0);
 /** URL BAR ***/
 user_pref("browser.urlbar.trending.featureGate", false);
 /** NEW TAB PAGE ***/
 user_pref("browser.newtabpage.activity-stream.default.sites", "");
 user_pref("browser.newtabpage.activity-stream.showSponsoredTopSites", false);
 user_pref("browser.newtabpage.activity-stream.feeds.section.topstories", false);
 user_pref("browser.newtabpage.activity-stream.showSponsored", false);
 user_pref("browser.newtabpage.activity-stream.showSponsoredCheckboxes", false);
-/** URL BAR ***/
+/** DOWNLOADS ***/
-user_pref("dom.text_fragments.create_text_fragment.enabled", true);
+user_pref("browser.download.manager.addToRecentDocs", false);
 /** PDF ***/
 user_pref("browser.download.open_pdf_attachments_inline", true);
 /** TAB BEHAVIOR ***/
 user_pref("browser.bookmarks.openInTabClosesMenu", false);
 user_pref("browser.menu.showViewImageInfo", true);
 user_pref("findbar.highlightAll", true);
 user_pref("layout.word_select.eat_space_to_next_word", false);
 /****************************************************************************
 * START: ZEN-SPECIFIC OVERRIDES                                            *
 ****************************************************************************/
 // Remove the slashes to enable the prefs
 // PREF: reduce CPU and GPU use until bug is fixed
 // [1] https://github.com/zen-browser/desktop/issues/6302
 user_pref("zen.view.experimental-rounded-view", false);
 // PREF: re-enable Windows efficiency mode
 //user_pref("dom.ipc.processPriorityManager.backgroundUsesEcoQoS", true);
@@ -105,6 +192,9 @@ user_pref("zen.view.experimental-rounded-view", false);
 // Currently bugged if you click to view what's blocked
 //user_pref("zen.urlbar.show-protections-icon", true);
 // PREF: Disable the Picture in picture pop-out when changing tabs
 //user_pref("media.videocontrols.picture-in-picture.enable-when-switching-tabs.enabled", false);
 /****************************************************************************
 * START: MY OVERRIDES                                                      *
 ****************************************************************************/
Author	SHA1	Message	Date
minh2134	c97bc06396	install.py: Waterfox compatibility and default to firefox user.js always (#485 ) * install.py: Integrate waterfox and default to firefox user.js always This commit: - Removes the old --zen switch - Adds a new --browser/-b switch to specify the browser. Available options: firefox, waterfox, zen - Now defaults to the firefox user.js even if there's new user.js added * install.py: Remove the redundant --zen flag	2026-05-30 22:03:12 -04:00
Vadim Zyamalov	392c62a03c	New profile system aloows for non-ascii characters (#470 )	2026-05-03 12:22:57 -04:00
yokoffing	0bc76714a9	Delete .github/FUNDING.yml	2026-05-01 17:35:42 -04:00
yokoffing	5fcaade85e	150.0 (#478 )	2026-04-21 15:40:42 -04:00
Reshad Ahammed Ayon	a9b4b8803a	feat: end-of-line conversion (#475 )	2026-04-09 15:34:29 -04:00
yokoffing	fd29d4d313	149.0 (#474 )	2026-03-26 15:12:53 -04:00
yokoffing	f1c8e3809d	148.0 (#461 )	2026-02-28 16:44:08 -05:00
gumballriggy	310cbdee6c	Update Fastfox.js (#462 ) fix a typo and remove a trailing space.	2026-01-22 12:55:36 -05:00
yokoffing	eee6e58b2b	146.0 (#447 )	2025-12-13 16:59:25 -05:00
NewKidOnTheBlock	3b159ac8fb	Removed outdated VPN Promo & Quickactions lines (#442 )	2025-10-28 23:00:52 -04:00
balacij	9d7e6acb9c	install.py: add support for macOS (#434 )	2025-10-22 20:54:50 -04:00
NewKidOnTheBlock	9f3e90876f	Remove outdated Pocket line (#439 ) As described in issue #438	2025-10-22 20:32:40 -04:00
yokoffing	9efeb601f6	144.0 (#429 )	2025-10-18 21:03:42 -04:00
Vadim Zyamalov	7b3cee24cc	Allow Firefox installed as non-admin (#423 )	2025-09-05 14:53:22 -04:00
yokoffing	2d81cd4094	142.0 (#420 )	2025-08-20 17:21:59 -04:00
Cat	ad9a3b4693	install.py: BetterZen compatibility (#418 )	2025-08-20 14:52:16 -04:00
yokoffing	9727810114	140.0 (#404 )	2025-07-22 12:28:37 -04:00
sykoram	e66de491ac	fix install.py (quotes in f-strings) (#405 )	2025-06-21 00:29:56 -04:00
mr. m	82553f0167	Remove experiemental rounded flag (#403 )	2025-06-16 16:45:55 -04:00
yokoffing	9052068d89	138.0 (#392 )	2025-06-02 00:45:46 -04:00
NewKidOnTheBlock	8c39175a02	SoGo calendar integration issues	2025-05-14 21:15:43 -04:00
sykoram	1a6be093dc	Improve install.py (#373 ) * install.py: add shebang * install.py: remove old version of _get_firefox_version * install.py: search for Firefox installation, including flatpak version * install.py: add option to disable 'Press ENTER to exit' * install.py: fix windows root	2025-04-28 10:06:35 -04:00