v 11.4.28
============================================================
x Prevent URL leaks from media placeholders (thanks NDevTK
for report)
x [nscl] Support for in-tree TLDs updates

v 11.4.27
============================================================
x [XSS] Better specificity of HTML elements preliminary
checks
x [XSS] Better specificity of potential fragmented injection
through framework syntax detection (thanks Rom623, barbaz
et al)
x [nscl] RegExp.combo(): RegExp creation by combination for
better readability and comments
x [nscl] Replaced lib/sha256.js with web platform native
implementation (thanks Martin for suggested patch)
x [nscl] Fixed property/function mismatch (thanks Alex)
x Fixed operators precedence issue #312 (thanks Alex)
x [nscl] Prevent dead object access on BF cache (thanks
jamhubub and mriehm)

v 11.4.26
============================================================
x [Android] Fixed regression preventing NoScript prompts
from being shown
x [XSS] Fallback to execute most demanding regular
expressions asynchronously
x [XSS] Removed obsolete Flash-related checks
x [XSS] Make InjectionChecker's regular expressions easier
to debug
x [XSS] Updated OpenID regexp

v 11.4.25
============================================================
x Reload extension on fatal failures
x [Android] Fixed UI styling regression
x Fixed UI inconsistencies when finer-grained contextual
policies are created/imported by other means (thanks
barbaz for reporting)

v 11.4.24
============================================================
x [XSS] Fix Base64 hash checks interfering with query string
checks (thanks barbaz for reporting)
x [TabGuard] Stop exempting domains bidirectionally by
default
x [TabGuard] Fix destination domain being reported as the
trigger of a warning prompt when all the other tab-tied
domains have been exempted (thanks barbaz for report)

v 11.4.22
============================================================
x [L10n] Updated uk
x Consistently apply DEFAULT policy to top-level data: URLs

v 11.4.21
============================================================
x Fixed mislabeled Tor Browser settings override option
x [L10n] Updated mk

v 11.4.20
============================================================
x Generalized prompt safety hooks
x Better blob: URL support
x [nscl] Improved cross-window patch cascading
x [nscl] Avoid unneeded side effects when checking for
zombie patched objects
x [nscl] Prompt safety hooks
x [L10n] Updated fr, fi
x Fix font family typo (!283, thanks alex-kinokon)

v 11.4.18
============================================================
x [Firefox on Linux] Fixed detached window UI gets closed
when its decoration is clicked (thanks richard for
reporting)

v 11.4.17
============================================================
x [nscl] Settings persistence made more reliable and
resilient against sync storage unavailability
x [Windows] Changed the tab enforcement toggling shortcut to
"Alt+Shift+Comma" (still "Alt+Shift+Space" on desktop OSes
other than Windows) - issue #281
x Updated copyright year
x Removed unused files from the source tree
x Fixed "Firefox" being shown instead of "Tor Browser" in
the Security Level override option label
x [L10n] Updated pl, tr

v 11.4.16
============================================================
x [L10n] Updated de, nl, pl, ru, sq, zh_CN
x Always open the windowed standalone UI when invoked from
the Alt+Shift+N shortcut
x Alt+Shift+Space shortcut to toggle restrictions
enforcement for current tab (issue #129, thanks PF4Public
for RFE)

v 11.4.15
============================================================
x Use the actual browser's brand name for Tor Browser
derivatives
x Always open the windowed standalone UI when invoked from
the contextual menu (thanks ZeroUnderscoreOu for
reporting)

v 11.4.14
============================================================
x Updated HTML event attributes list
x Uniformed indexed directory Firefox UI emulation to
prevent a script blocking bypass on file:// resources
(thanks RyotaK for reporting)
x Fixed error being logged in the console on scriptless
pages when hitting [Delete] or [Backspace] (thanks barbaz
for reporting)
x Work-around for background page misteriously being
unloaded sometimes by Firefox
x [L10n] Updated Transifex configuration

v 11.4.13
============================================================
x Ensure theme changes are synchronized across windows,
including private ones (thanks barbaz for reporting)
x [UI] Ensure prompts are always centered relative to the
parent window in multi-monitors setups
x Switch to "Modern Red Evil" icon contributed by fatboy
x Work-around for Chromium unable to load the placeholder
icon
x Themed placeholders
x [nscl] Fixed placeholder fallback styles on Gecko
embedding documents
x [L10n] New Romanian (ro) locale (thanks Simona Iacob and
Inpresentia I.)

v 11.4.12
============================================================
x [L10n] Updated is, mk
x [L10n] New Finnish (fi) locale (thanks RJuho, olavinto and
ricky.tigg)
x [L10n] New Ukrainian (uk) locale (thanks Kataphan, MuS and
uniss)
x [L10n] New Persian (fa) locale (thanks voxp and magnifico)

v 11.4.11
============================================================
x Fix broken NoScript dialogs when
browser.privatebrowsing.autostart = true (issue#259,
thanks foenix for reporting)
x Avoid using fallback origins for main_frame loads

v 11.4.10
============================================================
x [TabTies] Cascade and merge ties in a shared pool, to
prevent them from being cut by closing a middle tab
(thanks NDevTK for reporting)
x Extended origin normalization to top-level documents
(thanks NDevTK for reporting)
x [TabGuard] Fixed regression in about:blank handling
(thanks NDevTK for reporting)
x Better origin guess for requests from sandboxed iframes
(thanks NDevTK for reporting)
x More precise tracking of implicit origins in tab URLs
x [nscl] Stricter criteria for cutting tab relations (thanks
NDevTK for reporting)
x Use window.origin when fetching policies for inheriting
special URLs (thanks NDevTK for reporting)
x Better build script compatibility

v 11.4.9rc1
============================================================
x [L10n] Updated pl, tr, zh_CN
x [TabGuard] Abort the load when the warning dialog is
closed by any mean except the OK button
x [TabGuard] Stricter criteria for cutting tab relations
(thanks fatboy for reporting)

v 11.4.8
============================================================
x Cross-tab identity leak protection ("TabGuard", see
tor-browser#41071, thanks barbaz and fatboy for testing)
x [TabGuard] Better request lifecycle management
x [L10n] Updated de, it, nl, ru, sq
x [l10n] Automatic pull for 100% completed translations only

v 11.4.7
============================================================
x [XSS] Fixed regression in invalid characters optimization
causing false negatives (thanks Tsubasa for reporting)
x Minor build script enhancement

v 11.4.6
============================================================
x [nscl] Copy NOSCRIPT elements' attribute in emulated
replacements (issue #238)
x [XSS] Correct for concurrency in timeout checks
x [UI] Flatter preset appearance
x [UI] Focus visual feedback adjustments
x Inclusion-time TLD updates
x Updated HTML events
x [L10n] Updated pl
x Opaque white for vintage lock icons
x [L10n] Updated is

v 11.4.5
============================================================
x Improved preset sizing
x Reduce toolbar bottom shaded line tickness
x [L10n] Updated he
x Various user-driven visual tweaks
x Fixed vintage icon brightness in automatic light mode
x Minor icon tweaks

v 11.4.4
============================================================
x [L10n] Updated mk
x Removed "clearclick" item from default settings
x Better layout for mixed status icons

v 11.4.3
============================================================
x Reversed colors in Modern Red permissive icons for better
contrast
x Fixed regression causing only signed builds to complete

v 11.4.2
============================================================
x Dark scheme for high contrast toolbar buttons (issue #142)
x Reduce toolbar unused space
x Better contrast for "unsafe" URL labels
x Cleaner and more definite checked preset layout
x Less blurry focus halo
x [l10n] Updated pt_BR (thanks @DavidBrazSan)
x Removed eyes from default disabled and unrestricted small
icons
x Improved preset label positioning
x Improved visual cues for selected presets (issue #235,
thanks @unsungNovelty for report)
x Fixed regression removing hover effect from toolbar
buttons
x More balanced Modern Red icon set
x [L10n] Updated de, es, fr is, nl, ru, sq, tr, zh_CN
x Move XSS options down one line
x New "Enable restrictions on browser restart" option
x Localizable Modern Red / Vintage Blue switch.
x Minor cross-theme visual tweakings
x Override dark vintage theme brightness filter on images
for important UX cues
x Fix too wide CSS scope bleeding into page style (thanks
SuperPat45 for report)

v 11.4.1
============================================================
x Support for reverting to the "Vintage Blue" style
(NoScript Options/Appearance)
x Various tweaks to the "Moder Red" dark and light themes

v 11.4
============================================================
x Visual refresh based on Simply Secure concept artwork
x Full Dark/Light color schemes support
x [l10n] Many languages updates
x Include ServiceWorker-initiated fetch requests in UI
reporting (thanks 0_o for report)
x Remove redundant style patching
x Prompts can be closed by keyboard: Enter emulates the
default button click, Escape the cancel action
x Ensure better visibility for in-popup message box
x Sticky toolbar and scrollable fixed-height content in
browserAction popups
x [XSS] Automatically reload page when clearing XSS choice
from popup
x [XSS] Enable "Clear XSS Choices" button only if some item
is selected
x Remember last active tab when opening the option window
x Avoid useless reload if no actual change has happened in
enforcement status
x Fix for regression: request and execution attempts not
being reported anymore in the UI if restrictions are
disabled (thanks Stefan Mey for report)
x Dark mode support
x Improved high contrast layout
x Fixed automatic reload not always triggered for CUSTOM
tweakings
x More consistent cross-browser widgets
x Partial status indicator on the left of the icon, to
accommodate Chromium's badge position
x Make focus hint less elusive for needed capability widgets
x More accurate blocking stats