celenity/Phoenix 2025.06.02.1 on Codeberg

⚠️ IMPORTANT NOTE FOR MACOS USERS:

This release changes Phoenix's approach on macOS to be far closer to our approach on other platforms, such as Linux - without compromising security. This comes at the cost of improved performance, allows for easier use of Extended/Phoenix's specialized configs, etc.

For Phoenix to continue working properly on your system in the future, you MUST migrate your installation. You can easily upgrade with the following script we created:

/bin/zsh -c "$(curl --cert-status --doh-cert-status --no-insecure --no-proxy-insecure --no-sessionid --no-ssl --no-ssl-allow-beast --no-ssl-auto-client-cert --no-ssl-no-revoke --no-ssl-revoke-best-effort --proto -all,https --proto-default https --proto-redir -all,https --show-error -sSL https://gitlab.com/celenityy/Phoenix/-/raw/pages/installer_scripts/macos_migrate.sh)"

We apologize for any inconvenience, and thank you for your time, patience, and support of the project.

Removed our built-in search "extensions" in favor of Mozilla's "SearchEngines" Policy.

See details: https://codeberg.org/celenity/Phoenix/issues/100

Added a Phoenix-specific ("Phoenix filters") list to uBlock Origin, enabled by default. This list includes filters designed specifically to work with Phoenix and derivatives (such as IronFox) - Currently just used to unbreak Smartblock Embed Placeholders on Desktop.

See details: https://codeberg.org/celenity/Phoenix/commit/ffba31c239aaec49eca59b25083d3c2c6ae8bdfd

Fixed an issue that prevented **add-ons** from syncing properly with Firefox Sync.

extensions.getAddons.get.url -> https://services.addons.mozilla.org/api/v4/addons/search/?guid=%IDS%&lang=%LOCALE%
services.sync.addons.trustedSourceHostnames -> addons.mozilla.org

Enabled Origin-keyed agent clustering by default (Like Chromium).

See details: https://codeberg.org/celenity/Phoenix/commit/d02e51b2044963cf1e92b3c2eb606e278dfd25e0
dom.origin_agent_cluster.default -> true

Prevented automatically granting MV3 extensions optional host permissions by default.

extensions.originControls.grantByDefault -> false

Prevented extensions from opening pop-ups to remote websites.

See details: https://codeberg.org/celenity/Phoenix/commit/b4ed9435b3e540e0faf3c2d633cda4ef923bed59
extensions.manifestV2.actionsPopupURLRestricted -> true

Allowed enabling/disabling extensions per-container (if containers are enabled).

See details: https://codeberg.org/celenity/Phoenix/commit/daed676a27274a8c7cf1dddbb2b3221ce629dfbb
extensions.userContextIsolation.enabled -> true

Disabled back/forward cache (bfcache) by default.

See details: https://codeberg.org/celenity/Phoenix/commit/815451d28cbc378ed0f4bd1202288223ce18e561
browser.sessionhistory.max_total_viewers -> 0
fission.bfcacheInParent -> false

Disabled WebMIDI by default.

See details: https://codeberg.org/celenity/Phoenix/commit/39b3c752a217f4322d755167db78314719aa1325
dom.sitepermsaddon-provider.enabled -> false

Explicitly disabled WebDriver BiDi experimental commands and events (notable for Nightly users).

See details: https://codeberg.org/celenity/Phoenix/commit/dfe42b4f0c1aebbd8ad8fdc46f9ab405578a2d51
remote.experimental.enabled -> false

Hardened GPU sandboxing.

See details: https://codeberg.org/celenity/Phoenix/commit/d7aeb08a0485e29b36bb0b175cc46ac1c99016a0
security.sandbox.gpu.level -> 2

WINDOWS: Strengthened content process sandboxing.

See details: https://codeberg.org/celenity/Phoenix/commit/9c2d38f219fad79760883e16a74f454065d6e958
security.sandbox.content.level -> 20

Disabled add-on sideloading.

See details: https://codeberg.org/celenity/Phoenix/commit/740e9004672049f3b78a6f055103ab0539af8305
extensions.sideloadScopes -> 0

Prevented add-ons from direct URL requests and "file://" from installing without permission.

See details: https://codeberg.org/celenity/Phoenix/commit/d6c8f7afe343f60fe78bb37c21cfd661d6d95d5d
xpinstall.whitelist.directRequest -> false
xpinstall.whitelist.fileRequest -> false

Disabled the use of remote Cookie Banner Reduction rules, and instead set the rules locally.

See details: https://codeberg.org/celenity/Phoenix/commit/802bd62094df3b0cc832f14fbeaa9f82ea1a99a4

Enabled anti-spoof confirmation prompts.

network.auth.confirmAuth.enabled -> true

Disabled CSP reporting by default (Currently works on Nightly).

See details: https://codeberg.org/celenity/Phoenix/commit/3787ec26bb5494788fad16b5908550a53f70c3e8
security.csp.reporting.enabled -> false

Prevented HTTPS-First (if used instead of HTTPS-Only Mode) from automatically exempting domains from HTTPS.

See details: https://codeberg.org/celenity/Phoenix/commit/bd9fe3039845c86374bf94543383f66d852aa128
dom.security.https_first_add_exception_on_failure -> false
DESKTOP:
dom.security.https_first_add_exception_on_failiure -> false

Prevented exposing WebGL renderer info, regardless of if FPP/RFP (or the "WebGLRenderInfo" target) is active.

See details: https://codeberg.org/celenity/Phoenix/commit/3c37613a7b318d56e168f2e36bdf3efa6d448470
webgl.enable-renderer-query -> false
webgl.override-unmasked-renderer -> Mozilla
webgl.override-unmasked-vendor -> Mozilla

Disabled file:///net by default.

See details: https://bugzilla.mozilla.org/show_bug.cgi?id=1412081
network.file.path_blacklist -> /net

Set a fixed temporary storage limit to protect against fingerprinting.

See details: https://codeberg.org/celenity/Phoenix/commit/a294751076e65e47faeb361b99a7e78907235bb2
dom.quotaManager.temporaryStorage.fixedLimit -> 52428800

Enabled VP9 regardless of performance benchmarks by default, to protect against fingerprinting.

See details: https://codeberg.org/celenity/Phoenix/commit/89c70435cc21f92896425f75aa53fdd503490c34
media.benchmark.vp9.threshold -> 0

Disabled WebRTC history.

See details: https://codeberg.org/celenity/Phoenix/commit/d8b105b75d81ebdfb45d6b8165855717620efc33
media.aboutwebrtc.hist.enabled -> false

Disabled pre-allocation of content processes, due to fingerprinting concerns.

See details: https://codeberg.org/celenity/Phoenix/commit/506f9dfd621b577c2227ff1933b889771c43cffb
dom.ipc.processPrelaunch.enabled -> false
dom.ipc.processPrelaunch.fission.number -> 0

Set Firefox to always load bundled fonts (if available), regardless of device memory, to protect against fingerprinting.

See details: https://codeberg.org/celenity/Phoenix/commit/7143f871e011417a3438a7edefe98cc7bd46d08b
gfx.bundled-fonts.activate -> 1

ANDROID: Set Firefox to always use the standard "Noto Color Emoji" font, instead of custom ones (such as Samsung's) if available, to protect against fingerprinting.

See details: https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/43023
font.name-list.emoji -> Noto Color Emoji

DESKTOP: Disabled the ability to switch locales without restarting, due to fingerprinting concerns.

See details: https://codeberg.org/celenity/Phoenix/commit/5c79df93ed815bc729276e3563a7cad87bcf1417
intl.multilingual.liveReload -> false
intl.multilingual.liveReloadBidirectional -> false

Updated the built-in query stripping list with new additions from Brave.

See details: https://codeberg.org/celenity/Phoenix/commit/ed69003fb8f0a015d3707e953fa8cb29977723e2
privacy.query_stripping.strip_list -> __hsfp __hssc __hstc __s _bhlid _branch_match_id _branch_referrer _gl _hsenc _kx _openstat at_recipient_id at_recipient_list bbeml bsft_clkid bsft_uid dclid et_rid fb_action_ids fb_comment_id fbclid gbraid gclid guce_referrer guce_referrer_sig hsCtaTracking igshid irclickid mc_eid mkt_tok ml_subscriber ml_subscriber_hash msclkid mtm_cid oft_c oft_ck oft_d oft_id oft_ids oft_k oft_lk oft_sk oly_anon_id oly_enc_id pk_cid rb_clickid s_cid sc_customer sc_eh sc_uid srsltid ss_email_id twclid unicorn_click_id vero_conv vero_id vgo_ee wbraid wickedid yclid ymclid ysclid

Fixed an issue with redirects from "urldefense.com" caused by our query parameter stripping.

See details: https://codeberg.org/celenity/Phoenix/commit/5364984abb5a333900fe4da228220cb34ff906b8
privacy.query_stripping.allow_list -> urldefense.com

WINDOWS: Prevented prompting users to open system settings and enable Microsoft's Location Services.

See details: https://codeberg.org/celenity/Phoenix/commit/c336f9c0d9f05004cfbaed6f4a965c56d51eff6d
geo.prompt.open_system_prefs -> false

LINUX: Prevented unconditionally providing high location accuracy.

See details: https://codeberg.org/celenity/Phoenix/commit/c7ba61151e0806275288dd0b08b064183bcea06c
geo.provider.geoclue.always_high_accuracy -> false

Ensured users have full control over Nimbus recipes/experiments.

See details: https://codeberg.org/celenity/Phoenix/commit/b714ca561a6e16e1e0289a261966568039b38541
nimbus.debug -> true
nimbus.validation.enabled -> false

Increased video buffering for cellular connections.

See details: https://codeberg.org/celenity/Phoenix/commit/5c7d6707ba5ff00291f4be0807e1ccda5e0dbdb5
media.cache_readahead_limit.cellular -> 7200
media.cache_resume_threshold.cellular -> 3600
media.throttle-cellular-regardless-of-download-rate -> false

Increased the file-backed media cache size for cellular connections.

See details: https://codeberg.org/celenity/Phoenix/commit/5c7d6707ba5ff00291f4be0807e1ccda5e0dbdb5
media.cache_size.cellular -> 512000

Enabled higher-performance pinch zoom by default.

gfx.webrender.low-quality-pinch-zoom -> true

DESKTOP: Improved the reliability of extension storage sync.

services.sync.extension-storage.skipPercentageChance -> 0

Other minor tweaks, fixes, and additions.

Codeberg: See here for more details.

GitLab: See here for more details.

GitHub: See here for more details.