Basilisk is a free and Open Source XUL-based web browser created by the developers of the Pale Moon browser. It is based on the Goanna layout and rendering engine (a fork of Gecko) and builds on the Unified XUL Platform (UXP), which in turn is a fork of the Mozilla code base without Servo or Rust.
Basilisk as an application is primarily a vessel for development of the XUL platform it builds upon, and additionally a potential replacement for Firefox to retain the use of Firefox Extensions. It aims to retain useful technologies that its sibling Firefox has removed.
Requires Windows 7 or later. Windows XP or Windows Vista are not supported.
- Support for all NPAPI plugins (Unity, Silverlight, Flash, Java, authentication plugins, etc.).
- Support for XUL/Overlay Mozilla-style extensions.
- Experimental support for WebExtensions (in gecko-target mode). Please note that some Mozilla-specific WebExtension APIs are not yet available.
- Support for ALSA on Linux.
- Support for WebAssembly (WASM).
- Support for advanced Graphite font shaping features.
- Support for modern web cryptography: up to TLS 1.3, modern ciphers, HSTS, etc.
Important differences with Mozilla Firefox:
- Uses Goanna as a layout and rendering engine. Goanna behaves slightly differently than Gecko in certain respects and may result in different display of web pages. e.g.: Goanna renders gradients in a more accurate color space (non-premultiplied).
- Builds on UXP, our XUL platform in development. As such XUL is alive and well in this browser and will not be deprecated.
- Has some long-standing known issues with the Mozilla code-base fixed (e.g. CVE-2009-1232).
- Does not use Rust or the Photon user interface. You can expect a familiar interface as-carried by Firefox between v29 and v56.
- Does not use Electrolysis (e10s, multi-process browsing).
- Does not require walled-garden extension signing.
Basilisk 2021.03.11 changelog:
Fixed an issue with useragent updates.
Folder uploads through input elements now require user interaction on Windows 10.
Mitigated a potential problem with history location/state change updates if used in rapid succession.
Fixed a problem with WebCrypto failing to work properly with AES-GCM.
Updated various libraries for compatibility and security.
Fixed several memory safety hazards and potential browser crashes
Security issues fixed: CVE-2021-23973, CVE-2021-23974.
Unified XUL Platform Mozilla Security Patch Summary: 4 fixed, 2 defense-in-depth, 19 not applicable.