NoScript ChangeLog

v 1.1.4.8.070602
=====================================================================
x Removed console error message on document unload in SeaMonkey

v 1.1.4.8.070530
=====================================================================
x Fixed toggle shortcut regression (thanks therube)

v 1.1.4.8.070529
=====================================================================
x Automatic fixup of trailing dot domains, replacing them on the
  fly with their canonical name (thanks fartron and timeless)
+ "in.th" special TLD (thanks Kridsada)
x Fixed minor notification glitches in Fx 1.5 (thanks arete7)

v 1.1.4.8.070528
=====================================================================
x Performance optimization of options dialog closure for long 
  whitelists used in conjunction with long blackists (thanks arete7)
x Automatic notification hiding for background tabs (thanks arete7)

v 1.1.4.8.070523
=====================================================================
x Improved notification consistency with back-forward navigation
x Better compatibility with Google Desktop Search and Paypal email
  notifications

v 1.1.4.8.070522
=====================================================================
+ "org.uy", "net.uy" and "edu.uy" special TLDs (thanks Mauricio)
x Nicer url randomization
x Improved notification on nested URL XSS sanitization
x Fixed external load request detection failing "randomly" in some 
  setups (regression from the IETab incompatibility work-around) 

v 1.1.4.8.070521
=====================================================================
x Fixed regression from bug 53901 work-around, "Mark as untrusted
  menu" not working anymore (thanks Ricky Ridgdill)

v 1.1.4.8.070520
=====================================================================
x Resolved 070509 conflict with IETab + Tab Mix Plus causing some 
  tab-diverted links to open in new windows (thanks to Nuttysman, 
  niko322, Alan Baxter)

v 1.1.4.8.070514
=====================================================================
x Sanitized URI randomization (thanks kuza55 for inspiration)
x *Fast* reload also with fragment URI (thanks Martin Focke)

v 1.1.4.8.070513
=====================================================================
x Fixed last minute regression slipped in Anti-XSS GET filter (some 
  suspicious query strings entirely removed, rather than sanitized) 

v 1.1.4.8.070512
=====================================================================
+ Appearence Option to show/hide "Allow" menu items(thanks mamas6667)
x Updated locales (cs-CZ, en-GB, pl-PL)

v 1.1.4.8.070511
=====================================================================
x Fixed "black boxes" glitch on page unload (thanks jdopple)
x Fixed XSS exceptions must allow blank value (thanks Martin Focke)
x Fixed reloading URLs with hash(thanks Martin Focke)
x Work-around for Minefield bug displaying wrong labels on cloned 
  menu items (thanks Itsnow)
x Fixed regression, menu popup not shown by keyboard shortcut when 
  both toolbar button and status bar element are hidden (thanks
  niko322)

v 1.1.4.8.070509
=====================================================================
+ noscript.xss.trustExternal about:config preference controls if  
  anti-XSS filters should be bypassed for URLs opened from external
  applications like email clients (default false)
+ noscript.xss.trustTemp about:config preference controls if anti-XSS
  should be bypassed if URLs are opened from "temporary allow"ed 
  sites (default true, thanks Salim for suggestion)
x Wikipedia default XSS exception tweaked to include apostrophes in
  titles (thanks Alan Baxter for report)

v 1.1.4.8.070505
=====================================================================
x Better compatibility with Google Toolbar's translation service

v 1.1.4.8.070502
=====================================================================
x Fixed Linux Flash blocking crash when placeholders are active
  (thanks mastro for report)
x (Hopefully) Last  bug fix in referrer XSS sanitization (thanks
  Alan Baxter)

v 1.1.4.8.070501
=====================================================================
x Further bug fix in referrer XSS notification template

v 1.1.4.8.070430
=====================================================================
x Localization updates and release QA

v 1.1.4.8.070429
=====================================================================
+ Shortcut to show NoScript menu works even if status bar icon and
  toolbar button are both hidden
x Fixed "Options..." button not working if status bar hidden (thanks
  napiertt and joymus)
x Fixed regression in XSS notifications due to 070427 fix (some XSS
  suspicious requests were silently cancelled, rather than sanitized
  and notified)
x Fixed "empty Untrusted menu" (thanks niko322)

v 1.1.4.8.070428
=====================================================================
x Fixed using keyboard shortcut always shows status icon
x Fixed closing toolbar button menu always shows status icon 

v 1.1.4.8.070427
=====================================================================
x Fixed referrer sanitization glitch (thanks Alan Baxter)

v 1.1.4.8.070426
=====================================================================
x Fixed Refresh Blocker and Tab Mix plus redirection permissions 
  incompatibility (thanks tabasco.kfarmer and Mc)
x Fixed SeaMonkey "removed content" placeholder (thanks therube)
x Fixed Seamonkey "Reset" button placement (thanks Phil Chee)

v 1.1.4.8.070425
=====================================================================
+ Experimental "noscript.contentBlocker" about:config preference
  to block Java, Flash and other plugins in whitelisted sites as well
x Fixed bug in toolbar button Untrusted submenu (thanks Steve1000)
x Better XSS management on whitelisting automatic reloads (XSS checks 
  for whitelisting reloads can be disabled by toggling off the 
  "noscript.xss.trustReloads" preference in about:config)

v 1.1.4.8.070424
=====================================================================
+ "Reset" command in Options Dialog resets options to their default
  values (thanks Frank Myers)
+ Always bypass cache on XSS Unsafe Reload (thanks Jussi Lahtinen)
+ Serbian translation (thanks Ivan Pesic)
x Improved Wikipedia XSS exception

v 1.1.4.8.070423
=====================================================================
+ Lithuanian (thanks Mindaugas Jakutis)
x Additional localization updates and minor fixes

v 1.1.4.8.070422
=====================================================================
+ Forbid META redirection inside NOSCRIPT element in Seamonkey too
+ XSS notifications for Fx 1.5 too
+ XSS status bar icon appears when XSS activity is detected:
  left/right click opens XSS menu, middle click hides icon
+ META redirection bar icon appears when needed: 
  click follows redirection once, shift+click remembers for session, 
  middle click hides icon
x Fixed a regression (070420 only) with Import/Export buttons broken
x Fixed toolbar button removal messing with other NoScript menus
  (thanks niko322 for report)
x Fixed file:// URL item not showing anymore regression
  (thanks Shingoshi for report)
x Fixed regression in Option Dialog: removing from whitelist didn't 
  work if you applied to just one site (multiple batch did work) -
  thanks Alan Baxter for report

v 1.1.4.8.070420
=====================================================================
x Fixed "Forbid other plugins implies Forbid Flash" - thanks Dwedit
x Fixed Options dialog issues with Fx 1.5

v 1.1.4.8
=====================================================================
x Minor improvements in XSS exceptions regular expression parsing
x Fixed last-minute Seamonkey breakage (many thanks therube!!!)

v 1.1.4.8RC3 (1.1.4.7.070420.1)
=====================================================================
x Further refinement in XSS filters (thanks niko322)

v 1.1.4.8RC2 (1.1.4.7.070420)
=====================================================================
x Fixed 2nd level domain toggle option (thanks therube)
x Fixed multi-window feedback synchronization (thanks lakrids)

v 1.1.4.8RC1 (1.1.4.7.070419)
=====================================================================
+ Option to block META refresh inside NOSCRIPT elements: a prompt
  will be shown asking if you want to follow the redirect, and
  choice will be remebered across the current session
  (noscript.forbidMetaRefresh.remember preference, dismissing the 
  notification with its close button means "keep blocked")
  thanks rsnake and Alan Baxter for suggestion (Firefox 2 only)
+ "XSS-Unsafe Reload" menu item in the XSS notification bar popup
+ "XSS FAQ" menu item in the XSS notification bar popup
+ noscript.xss.notify.subframes about:config preference to control 
  notification for XSS in subframes (default false, suppressed)
+ Option to toggle sites by (2nd level) domain, rather than full URL
x Default "Show NoScript menu" shortcut changed to Ctrl+Shift+S
  (Ctrl+Shift+X conflicting with "change direction" Firefox command)
x moved "Show Console" from XSS notify button to an "Options" popup
x Options Dialog reorganization
x Right click on toolbar button and status bar elements opens menu
x Mass-removal speedup of in Options Dialog|Whitelist

v 1.1.4.7.070414
=====================================================================
+ Finer grained treatment for data: and javascript: urls in frames,
  whose domain is considered the one of the nearest window ancestor
  having a meaningful web address (thanks to Vectorspace for his
  suggestion)

v 1.1.4.7.070413
=====================================================================
+ "noscript.globalwarning" about:config hidden preference controls
  wether a warning prompt should be issued or not whenever user
  switches on scripts globally (true by default)
x Improved Anti-XSS Protection compatibility with some message boards
  (special thanks to Aerik and Olaf Schweppe)

v 1.1.4.7
=====================================================================
+ First "official" anti-XSS release
+ New plugin content detection algorithm defeats latest aggressive 
  Flash cloaking strategies (e.g. http://www.hardocp.com/ )
+ Improved subframe detection, includes object elements (e.g.
  http://www.operamini.com/demo/ )
+ Improved fast reload, preserving form input data.
+ Minefield full compatibility

v 1.1.4.6.070409
=====================================================================
x Fixed weird intermittent interference with dynamic JavaScript 
  inclusion via document.write() used by some JavaScript libraries 
  (e.g. Prototype, Dojo or Tiny-MCE)

v 1.1.4.6.070404
=====================================================================
x Drastic reduction of XSS redirection-related false positives

v 1.1.4.6.070325
=====================================================================
x Fixed regression, leak happening on window closure (10x pirlouy)
x Fixed regression, file:// entries missing from menus (10x therube)

v 1.1.4.6.070322
=====================================================================
+ Safer behaviour on reloading/whitelisting a XSSed page

v 1.1.4.6.070321
=====================================================================
+ XSS sanitization of the whole request URL
+ XSS sanitization of the referrer URL
+ XSS filters exceptions for some "trusted" addresses requiring 
  cross-site complex query strings (controlled by a regexp in the
  noscript.filterXExceptions hidden preference, defaults to Google 
  search and Yahoo search)
+ Better general search engine compatibility with anti-XSS filters
x Several performance optimizations

v 1.1.4.6.070318
=====================================================================
+ First anti-XSS countermeasures round: "default deny" sanitization
  is applied to every request coming from an unknown (restricted) 
  site and landing on a trusted (scripting allowed) site:
  1. GET requests with a query string get all the matches for the
     noscript.filterXGetRx regular expression replaced with space
  2. POST requests are turned into no-data GET
  3. Every request filtering action is logged to the Console, while a
     short notification is issued through the info-bar* (if enabled)
     *Info-bar notifications require Fx 2.0 or above
  Behaviours 1 and 2 can be controlled from NoScript Options|Advanced

v 1.1.4.6.070317
=====================================================================
x Customizable keyboard shortcuts (about:config - noscript.keys.*) 
x Quick toggle (by shortcut or toolbar) behaviour changed to 
  *Temporarily* Allow / Forbid (old behaviour can be restored by
  setting the about:config noscript.toggle.temp pref to false) 

v 1.1.4.6.070316
=====================================================================
+ Super fast reloading after toggling permissions
+ Hebrew (thanks to Asaf Bartov)
x removed mozillazine.org and mozilla.org from the default list 
  (thanks Wladimir Palant)

v 1.1.4.6.070307
=====================================================================
x Further improvement in Higmmer patch

v 1.1.4.6.070305
=====================================================================
x Fixed a resource deallocation issue (thanks Higmmer)
x Fixed a potential slowdown on startup

v 1.1.4.6.070304
=====================================================================
+ Added many ".id" special TLDs (thanks FatMan)
x Fixed localization-related bugs
x Other minor bug fixes

v 1.1.4.6.070302
=====================================================================
x Fixed a regression in the "Export" functionality
x Added a couple of about:config options (noscript.keys.*) to disable 
  keyboard shortcuts: just blank their values. Notice: changing the
  option value to a different key is possible, but it  doesn't 
  actually work (yet?)

v 1.1.4.6
=====================================================================
x Stable "blacklist" release
+ Vietnamese (thanks tonynguyen)
+ Galician (thanks roebek)

v 1.1.4.5.070222
=====================================================================
x Fixed a "Mark as untrusted" menu item bug

v 1.1.4.5.070210
=====================================================================
x Fixed a bug affecting some locales on Mozilla/SeaMonkey/Fx 1.0

v 1.1.4.5.070207
=====================================================================
x "Forbid" doesn't mark the site as untrusted by default anymore (old
  behaviour can be restored via "noscript.forbidImpliesUntrust" pref)

v 1.1.4.5.070127
=====================================================================
+ Experimental blacklist ("Mark as untrusted" + "Untrusted|Allow")
+ Global shortcut toggling top level status: "CTRL + SHIFT + \"
+ Global shortcut to NoScript menu: "CTRL + SHIFT + X"
+ Extra control on NOSCRIPT elements rendering
+ "Allow Globally" menu item is optional now (shown by default)
+ "Link Local Files" optional permission for trusted sites
+ "noscript.excaps" hidden pref for CAPS conflicts resolution (e.g.
  with Google Toolbar and other Google extensions)
+ "Temporarily allow top-level sites by default" new preference 
  (not advised and disabled by default)
+ Menu items referring to current location are hilighted in bold
+ New preference in Options|General controls toolbar button reaction
  to left click (default none, optional toggles top level status)
+ net.uk, com.uk and org.uk pseudo TLDs

v 1.1.4.5.061231
=====================================================================
x Fixed "cancel with non-failure status code" assertion

v 1.1.4.5.061221
=====================================================================
+ Minefield (3.0a2) support
+ Fixed plugin placeholder trunk issue (thanks timeless for report)
+ *.ua "special" TLDs (thanks Devan Chetty)

v 1.1.4.5.061206
=====================================================================
+ Added org.in and co.sy to the "special" TLDs list
x Fixed some bookmarklet quirks (not in trunk, though)
x Fixed a bug in "uk.xyz" special TLDs management

v 1.1.4.5.061030
=====================================================================
x Minefield fix: feedback during/after document loading (bug 335251)
x Minefield fix: bookmarklet on the fly enablement (bug 351633)

v 1.1.4.5.061021
=====================================================================
x Fixed title changes lost on some pages
x Restored Flock compatibility

v 1.1.4.5
=====================================================================
+ Some user interface tweakings in the Options UI
+ Several optimizations
x Fixed XML issue
x Fixed BFCache side-effects on certain pages
x Fixed a timing bug in stand-alone plugin interception

v 1.1.4.4
=====================================================================
+ be-BY (Belarusian) thanks to DRKA 
+ JavaScript links fixing made compatible with AllPeers
+ Better interception of plugin content
x Fixed interception of xml and xhtml content
x Fixed some strict warnings (thanks to timeless)

v 1.1.4.3
=====================================================================
+ Emulated Firefox 1.0.x top-level plugin content blocking behaviour
+ uk-UA (Ukrainian) thanks to MozUA
+ th-TH (Thai) thanks to Qen
+ fa-IR (Persian) thanks to Pedram Veisi
+ el-GR (Greek) thanks to Sonickydon
+ en-GB (English GB) thanks to Ian Moody
+ hr-HR (Croatian) thanks to Krcko
x Other updated translations
x Fixed plugin content reloading bug

v 1.1.4.2
=====================================================================
+ Notifications Firefox 2+ compatible
x Fixed whitelist import bug (phantom resource:xyz entry)
x Fixed "removeLinkFixer" warning (thanks to Pablo)

v 1.1.4.1
=====================================================================
+ Left clicking on NoScript toolbar button toggles permissions for 
  current top-level site
+ Shift+Click on a Java/Flash/Object placeholder temporarily hides it
+ "Attempt to fix JavaScript links" now skips "real" hash URLs
+ Added live.com to the default whitelist (for MS webmails)
x Removed a leak caused by "Attempt to fix JavaScript links" option
x Fixed Macedonian translation

v 1.1.4
=====================================================================
+ "Allow sites opened through bookmarks" option
+ Notification delay in seconds can be changed through the
  "noscript.notify.hideDelay" about:config preference
x Removed bogus JS messages on SeaMonkey startup
x Fixed bookmarklet support to work with the new "Places" code,
  the bookmark sidebar and the bookmark manager
x Added mozilla.com to the default whitelist
x Always honour "Attempt to fix JavaScript links" option (links
  were processed anyway if "Forbid <a...ping>" was enabled)

v 1.1.3.9
=====================================================================
x Fixed temporary memory leak when loading pages containing plugins
  (many thanks to Steve England)
x JavaScript links should not be "fixed" when scripts are globally
  allowed

v 1.1.3.8
=====================================================================
x Another emergency release to fix Babelzilla bugs with Asian
  languages (mass-reverting to 1.1.3.5 properties files to be sure).
- Removed permanent whitelist (all the web sites can can 
  be forbidden from the UI, no more about:config need)

v 1.1.3.7
=====================================================================
x Fixed some localization bugs

v 1.1.3.6
=====================================================================
+ "Fix JavaScript links" option: enabled by default, attempts to
  automatically turn JavaScript links into regulars anchors on load
+ Advanced options "Allow <a ping...>" on trusted sites (defaults to
  the browser settings) and  "Forbid <a ping...>" on untrusted sites 
  (default yes) give user control on the new, debated "ping" anchor 
  attribute
+ New hidden (about:config) boolean preference "noscript.consoleDump"
  controls if blocked contents must be logged to the console (false
  by default)
+ Slovak (thanks to Slovak Soft)
+ Romanian (thanks to Ultravioletu)
+ Hungarian (thanks to LocaLiceR)
+ Chinese Traditional (thanks to Chiu Po-Jung)

v 1.1.3.5
=====================================================================
+ "Truncate title" option: enabled by default, even on whitelisted
  sites, is a quick & dirty work around for Firefox DOS bug 319004
+ "com.xy" 2nd level domains are always considered special TLDs
+ Other special TLDs added
x Fixed "Forbid other plugins" semantics: Java and Flash should
  remain allowed unless their specific "Forbid" option is flagged.
x Fixed portuguese locale bug

v 1.1.3.4
=====================================================================
+ Flock support
+ Finnish (thanks to Mika Pirinen)
+ Norwegian bokmål (thanks to Håvard Mork)

v 1.1.3.3
=====================================================================
+ Placeholder icon can be hidden (NoScript Options|Advanced)
+ Message bar notifications can be set to go away automatically after 
  5 seconds
+ Bulgarian (thanks to Georgi Marchev)
+ Simplified Chinese (thanks to George C. Tsoi)
+ Russian (thanks to Alexander Sokolov)
+ Turkish (thanks to Engin Yazılan)
x Best effort XPCOM auto registration on Mozilla Suite installation
x Minor menu formatting glitches removed
x Some about:xxx URLs added to the default whitelist

v 1.1.3.2
=====================================================================
+ Bookmarklet support. It allows JS on current page just for the
  bookmarklet execution lifespan. If you don't want or don't need it,
  turn on "NoScript Options|Advanced|Forbid Bookmarklets"
x Fixed right-click status label crash affecting pre-1.8 browser.Now
  status label context menu works on Mozilla and Firefox 1.0.x too.

v 1.1.3.1
=====================================================================
+ Option to skip confirmation when temporarily unblocking objects
+ Optional status bar label (with Firefox-only context menu)
+ Support for Unicode domains
x Work-around for Firefox bug #307678 (dialogs freeze)
x Handle about:neterror and about: (help) "always allowed" exception 

v 1.1.3
=====================================================================
+ Toolbar button
+ Java/Flash/Plugin content can be temporarily allowed (for the
  current tab) with a left click on its placeholder 
+ Further optimizations in site matching
+ Japanese (thanks to beerboy)
+ Polish (thanks to Lukasz Biegaj)
+ Catalan (thanks to Joan-Josep Bargues)
+ Czech (thanks to Petr Jirsa)
x Bug fix: "Allow JavaScript Globally" didn't affect Java, Flash and
  Plugin immediately

v 1.1.2.20050901
=====================================================================
x Bug fix: temporarily allowed sites were not removed if no
  permission change happened in the following session

v 1.1.2
=====================================================================
+ Java/Flash/Plugins blocking works in Mozilla Suite / SeaMonkey too
+ Huge performance (up to 100x) improvements in policy matching
+ More consistent temporary sites handling (allowing a temporary
  domain while subdomains are allowed, now forbids ancestors of that
  domain but not its subdomains anymore on restart)
+ Added "ar.com" to the list of "special" TLDs
x No more "phantom" http:// and https:// entries in whitelist

v 1.1.1
=====================================================================
x Fixed sites list update synchronization bug
x Fixed Spanish locale bug


v 1.1.0
=====================================================================
+ Customizable message position, top or bottom (new default) 
+ Customizable audio sample for feedback
+ (Firefox only) Advanced options to forbid Java™, Flash® and other 
  plugins (Java™ forbidden by default, since many users don't
  know the difference between Java and JavaScript)
+ Advanced options to allow rich-text clipboard on trusted sites
+ Portoguese translation (thanks to Dario Ornelas)
x New (less ambiguous) "partially allowed" icon
x Audio feedback off by default
x Statusbar icon hidden status persists across sessions
x Proper jar: scheme handling (will allow per-domain selection when
  Firefox bug preventing it is patched -
  see https://bugzilla.mozilla.org/show_bug.cgi?id=298823)
x jar: scheme can be allowed only temporarily (see above)
x No more browser activity stop after permission changes

v 1.0.9
=====================================================================
+ Temporarily allow URLs (for current session only): temporary items
  are shown in italics font
+ Clean uninstall in Deer Park
+ Added jar: to the default white-list, to allow about:plugin
  and other "special" URLs to work out-of-the-box
x Better work-arounds for Firefox synchronization bugs
x Fixed conflict when a "View Source" window was open

v 1.0.8
=====================================================================
+ Whole addresses are shown when a port number is specified, no
  matter which the Appearance options are, since enabling a domain
  doesn't enable it for non-standard ports (thanks to jayvdb for
  suggestion)
+ Stop every browser activity before changing policies (this should
  be a workaround for most crashes dued to Firefox CAPS bugs)

v 1.0.7
=====================================================================
+ Notification message "popup blocker" style (Firefox only)
+ Autoreload synchronizes every view whose permissions have changed
+ Spanish translation (thanks to Alberto Martínez)
x Improved subframes management in the contextual menu
x Better UI support for "special" TLDS like co.uk, co.nz and others
x Improved support for numeric addresses
x Audio feedback with more discreet sound effect :-)

v 1.0.6
=====================================================================
+ Whitelist import/export (thanks hsmwrv for suggestion)
+ Only 2nd level (base) domains shown by default in the "Allow" menu 
  items (easier operation for non-geeks; geeks can still revert to
  the old fine grained interface using the "Appearance" options)
+ Blocked scripts audio feedback (thanks to Markus for suggestion)
+ about:config/noscript.permanent can be changed live (no FF restart)
x chrome content URL are properly whitelisted (XUL error pages OK)
x Fixed empty permanent list problem (thanks to Patrick and Oremina 
  for report)

v 1.0.5
=====================================================================
+ "Appearance" option to hide/show popup menu and status bar icon; if
  you decide to hide both, options are still reachable through the 
  Extension Manager context menu (thanks Dick Minor for suggestion)
+ 2nd level domain trick don't clutters Options Dialog anymore
  (http[s]:// auto-prefixed domains are hidden in whitelist)
x Fixed menu layout (thanks to TheOneKEA for report)

v 1.0.4
=====================================================================
+ Automatically creates http:// and https:// prefixed URLs when a 2nd
  level domain (xyz.com) is allowed, as a workaround for Firefox not 
  matching URLs with a raw 2nd level domain if no protocol is listed
  (thanks to Laura for report)
+ "Allowed" status feedback for chrome:// URLs (pacanukeha)
x Core functionality refactored in a XPCOM service

v 1.0.3
=====================================================================
+ Feedback about actual presence of script elements in current page
  (white "S" icons if no script tag is found, while number of found 
  tags is shown in the tooltip - thanks to Volker for suggestion)  
+ Feedback about partial permissions in pages containing subframes
  (a broken red "stop" sign means only some frames are forbidden)
+ Events are coalesced for better performance and stability
+ Improved options dialog usability (new items are ensured visible
  and "delete" key performs mouse-less site removal)
+ Added hotmail/msn/passport domains to default whitelist (thanks to
  Swann for suggestion)
+ Added googlesyndication.com and noscript.net to permanent list ;)
x Fixed whitelist options dialog sometimes "forgetting" recently 
  added items (thanks to TheOneKEA, Bill Mayer and Bill Selden for 
  their reports)

v 1.0.2
=====================================================================
+ Option dialog shortcuts (thanks to Ulysses for suggestion)
+ French translation (thanks to Xavier Robin)
x NoScript doesn't ignore port number in URLs anymore
x Moved "Options" and "About" items to the top of status bar menu
  (thanks to Filipp0s for suggestion and for the smaller icons too)
x Added mozillazine.org and gmail.google.com to default allow list
x No duplicates in menu when multiple frames share the same
  ancestor domain (e.g. mozillazine.org)

v 1.0.1
=====================================================================
+ Contextual menu for easy operation in statusbar-less windows
+ Current page is automatically reloaded when permissions are changed
+ Support for implicit subdomain inclusion (e.g. if you add 
  mozilla.org, you allow www.mozilla.org, addons.mozilla.org etc.)
+ German translation (thanks to my friend Thomas Weber)
x Fixed localization issue
x Work around for Firefox occasional crashes

v 1.0.0
=====================================================================
First public release
