Analysis does not run in Pale Moon

[openstrike]

FAQ

• [X] Yes, my issue is not about variability or throttling.
• [X] Yes, my issue is not about a specific accessibility audit (file with axe-core instead).

URL

https://www.google.co.uk/

What happened?

Visiting https://pagespeed.web.dev/analysis?url=https://www.google.co.uk/ (or indeed inspecting any other URL there) in Pale Moon results in the display of the "Running analysis" text in the main panel of the page and nothing else happens.

What did you expect?

I expected the analysis to run (or at the very least some error to be shown).

What have you tried?

I have tried in Pale Moon versions 32.1.1 and 32.2.0 seeing the same.

I have looked in the console and the full detail there is in the relevant section below.

This used to run fine - maybe a month or two ago? - and it still runs in the latest FireFox.

How were you running Lighthouse?

PageSpeed Insights, web.dev

Lighthouse Version

The report doesn't run. It's whatever version is on pagespeed.web.dev.

Chrome Version

No response

Node Version

No response

OS

Linux 64-bit

Relevant log output

Content Security Policy: Couldn't parse invalid host 'report-sample'  
(unknown)
Content Security Policy: Ignoring "'unsafe-inline'" within script-src or style-src: nonce-source or hash-source specified  
(unknown)
Content Security Policy: Couldn't process unknown directive 'require-trusted-types-for'  
(unknown)
WARNING!  
m=_b,_tp,_r:271:250
Using this console may allow attackers to impersonate you and steal your information using an attack called Self-XSS.
Do not enter or paste code that you do not understand.  
m=_b,_tp,_r:271:250
Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://www.gstatic.com/_/mss/boq-chrome-wdi-lightbrary/_/js/k=boq-chrome-wdi-lightbrary.PagespeedUi.en_US.eY63gycyd_s.es5.O/ck=boq-chrome-wdi-lightbrary.PagespeedUi.506FCKbCoBU.L.X.O/am=wDkLIAQ/d=1/exm=_b,_r,_tp/excm=_b,_r,_tp,analysisview/ed=1/wt=2/ujg=1/rs=AJ3lrY4lPRj9lgw99sxYa6HoXzjKrKw_mg/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:QIhFr;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:BBI74;yEQyxe:h9EUVb;yxTchf:KUM7Z;zxnPse:GkRiKb/m=ws9Tlc,n73qwf,GkRiKb,e5qFLc,IZT63,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,p8L0ob,rCcCxc,sJmisf,O6y8ed,mzzZzc,PrPYRd,MpJwZc,LEikZe,NwH0H,OmgaI,h9EUVb,XVMNvd,L1AAkb,KUM7Z,Mlhmy,s39S4,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,pw70Gc,EFQ78c,Ulmmrd,ZfAoz,Ru0Pgb,xQtZb,gJzDyc,JNoxi,kWgXee,BVgquf,QIhFr,ovKuLd,yDVVkb,hc6Ubd,SpsfSb,KG2eXe,Z5uLle,BBI74,VwDzFe,MdUzUe,A7fCU,zbML3c,zr1jrb,KxWcud,nVrc2c,Uas9Hd,iHYER,pjICDe. (Reason: CORS header 'Access-Control-Allow-Origin' missing).  
(unknown)
Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://www.gstatic.com/_/mss/boq-chrome-wdi-lightbrary/_/js/k=boq-chrome-wdi-lightbrary.PagespeedUi.en_US.eY63gycyd_s.es5.O/ck=boq-chrome-wdi-lightbrary.PagespeedUi.506FCKbCoBU.L.X.O/am=wDkLIAQ/d=1/exm=A7fCU,BBI74,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,KxWcud,L1AAkb,LEikZe,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,QIhFr,RMhBfe,Ru0Pgb,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,byfTOb,e5qFLc,fKUV3e,gJzDyc,gychg,h9EUVb,hc6Ubd,iHYER,kWgXee,lsjVmc,lwddkf,mzzZzc,n73qwf,nVrc2c,ovKuLd,p8L0ob,pjICDe,pw70Gc,rCcCxc,s39S4,sJmisf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,analysisview/ed=1/wt=2/ujg=1/rs=AJ3lrY4lPRj9lgw99sxYa6HoXzjKrKw_mg/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:QIhFr;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:BBI74;yEQyxe:h9EUVb;yxTchf:KUM7Z;zxnPse:GkRiKb/m=CHCSlb,i5dxUd,m9oV,RAnnUd,fmklff,UMu52b,uu7UOe,QqJ8Gd,soHxf,nKuFpb,JIOGxd. (Reason: CORS header 'Access-Control-Allow-Origin' missing).  
(unknown)
Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://www.gstatic.com/_/mss/boq-chrome-wdi-lightbrary/_/js/k=boq-chrome-wdi-lightbrary.PagespeedUi.en_US.eY63gycyd_s.es5.O/ck=boq-chrome-wdi-lightbrary.PagespeedUi.506FCKbCoBU.L.X.O/am=wDkLIAQ/d=1/exm=A7fCU,BBI74,BVgquf,CHCSlb,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JIOGxd,JNoxi,KG2eXe,KUM7Z,KxWcud,L1AAkb,LEikZe,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,QIhFr,QqJ8Gd,RAnnUd,RMhBfe,Ru0Pgb,SdcwHb,SpsfSb,U0aPgd,UMu52b,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,byfTOb,e5qFLc,fKUV3e,fmklff,gJzDyc,gychg,h9EUVb,hc6Ubd,i5dxUd,iHYER,kWgXee,lsjVmc,lwddkf,m9oV,mzzZzc,n73qwf,nKuFpb,nVrc2c,ovKuLd,p8L0ob,pjICDe,pw70Gc,rCcCxc,s39S4,sJmisf,soHxf,uu7UOe,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,analysisview/ed=1/wt=2/ujg=1/rs=AJ3lrY4lPRj9lgw99sxYa6HoXzjKrKw_mg/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:QIhFr;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:BBI74;yEQyxe:h9EUVb;yxTchf:KUM7Z;zxnPse:GkRiKb/m=Wt6vjf,hhhU8,FCpbqb,WhJNk. (Reason: CORS header 'Access-Control-Allow-Origin' missing).  
(unknown)

[paulirish]

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://www.gstatic.com/_/mss/boq-chrome-wdi-lightbrary/…JIOGxd. (Reason: CORS header 'Access-Control-Allow-Origin' missing).
Cross-Origin Request Blocked: … Cross-Origin Request Blocked: …

So these are the 3 JS files that form the basis of the webapp. I checked and they are included via regular old script tags.

from a web platform perspective I don't understand why your browser is doing CORS checks on them. an external script tag is not beholden to SOP and doesn't need an ACAO header.

so... it just sounds like your browser is operating in a way that's not spec compliant. And.. i'd assume that a LOT of sites are broken.

[Sa-Ja-Di]

@paulirish the topic opener forgot to ask what the requirements are to view the page at all.

As Pale Moon is adding slowly missing ECMAScript features to their engine. So, what are the requirements to make the page show at all? Bigint or even something from the 2023 ECMAScript feature set perhaps?

Pointing to the respective features which are necessary to show the page properly would be for sure helpful. As missing ECMAscript/CSS features are hard to backport to the forked Firefox engine Pale Moon is using.

Thanks for any possible hint!