A Content-Security-Policy with script-src ‘none’ should already allow for that . no js can be loaded like that
Comment on No JS, No CSS, No HTML: online "clubs" celebrate plainer websites
frezik@lemmy.blahaj.zone 12 hours ago
Maybe we could have No-JS and No-Client-Storage (which would include cookies) headers added to HTTP. Browsers could potentially display an icon showing this to users on the address bar.
Theoretically, browsers could even stop from the JS engine from being started for the site in the first place. Though I wouldn’t be surprised if the engine is too tied into the code of modern browsers for that to work.
snowfalldreamland@lemmy.ml 12 hours ago
sylver_dragon@lemmy.world 10 hours ago
The NoScript extension is basically this. Most of the client side stuff is off by default and you can enable it per-domain. It breaks a whole lot of websites, but often in ways where the main content of a website is still readable. Over time, you can build up a list of “allow by default” domains and most of the web you care about works. Though, you may have to spend a moment or two sorting out permissions when you visit a new site.