haloged-studio.top: breakage

[haloged]

Prerequisites

• [X] This is NOT a YouTube, Facebook, Twitch or a shortener/hosting site report. These sites MUST be reported by clicking their respective links.
• [X] I read and understand the policy about what is a valid filter issue.
• [X] I verified that this issue is not a duplicate. (Use this button to find out.)
• [X] I did not remove any of the default filter lists, or I have verified that the issue was not caused by removing any of the default lists.
• [X] I did not enable additional filter lists, or I have verified that the issue still occurs without enabling additional filter lists.
• [X] I do not have custom filters/rules, or I have verified that the issue still occurs without custom filters/rules.
• [X] I am not using uBlock Origin along with other content blockers.
• [X] I have verified that the web browser's built-in content blocker/tracking protection, network wide/DNS blocking, or my VPN is not causing the issue.
• [X] I have verified that other extensions are not causing the issue.
• [X] If this is about a breakage or detection, I have verified that it is caused by uBlock Origin and isn't a site issue.
• [ ] I did not answer truthfully to ALL the above checkboxes.

URL address of the web page

https://www.haloged-studio.top/

Category

breakage

Description

UBlockOrigin unexpectedly blocked cdn.staticfiles.org, a website that provides JavaScript and CSS storage. Without it, my website would not work.

Other extensions used

No.

Screenshot(s)

Screenshot(s)

Configuration

```yaml uBlock Origin: 1.57.2 Chromium: 126 filterset (summary): network: 153814 cosmetic: 57871 scriptlet: 21642 html: 0 listset (total-discarded, last-updated): added: https://raw.githubusercontent.com/cjx82630/cjxlist/master/cjxlist.txt: 515-3, now default: user-filters: 1-0, never CHN-0: 26435-146, now easylist: 87471-822, 34m Δ easyprivacy: 51103-2, 34m Δ plowe-0: 3543-615, now ublock-badware: 9011-0, 34m Δ ublock-filters: 38896-294, 34m Δ ublock-privacy: 938-3, 34m Δ ublock-quick-fixes: 108-0, 34m Δ ublock-unbreak: 2364-19, 34m Δ urlhaus-1: 15005-0, now filterset (user): [array of 1 redacted] trustedset: added: [array of 21 redacted] switchRuleset: added: [array of 1 redacted] userSettings: [none] hiddenSettings: [none] supportStats: allReadyAfter: 404 ms (selfie) maxAssetCacheWait: 156 ms cacheBackend: indexedDB popupPanel: blocked: 3 network: staticfile.org: 3 ```

[stephenhawk8054]

staticfile.org is managed by polyfill, who was found distributing malwares through their domains:

• https://github.com/uBlockOrigin/uAssets/pull/24285
• https://www.bleepingcomputer.com/news/security/polyfillio-bootcdn-bootcss-staticfile-attack-traced-to-1-operator/
• https://sansec.io/research/polyfill-supply-chain-attack

Please update your website's code and don't use these domains any more.

[famousprince]

Replace the cdn.staticfiles.org with cdnjs.cloudflare.com/ajax/libs and stay away from staticfile.org.

[PaTTeeL]

Replace the cdn.staticfiles.org with cdnjs.cloudflare.com/ajax/libs and stay away from staticfile.org.

How can I replace it by using static filter? I've tried *$script,stylesheet,replace=/cdn.staticfile.(net|org)/cdnjs.cloudflare.com\/ajax\/libs/i in "My filters" with "Allow custom filters requiring trust" turned on, and it seems does not work.

[stephenhawk8054]

replace is for replacing the content of the connection, not redirecting connections go other sources. You'll need other tools for redirection.

[PaTTeeL]

replace is for replacing the content of the connection, not redirecting connections go other sources. You'll need other tools for redirection.

I've already redirect connections by using Header Editor extension in Microsoft Edge :

Rules:
    "name": "Fix Supply Chain Attack",
    "ruleType": "redirect",
    "matchType": "regexp",
    "pattern": "https?:\\/\\/cdn.(?:bootcdn.net\\/ajax\\/libs|bootcss.com|polyfill.io|staticfile.(net|org))\\/(.*)",
    "to": "https://cdnjs.cloudflare.com/ajax/libs/$2"

but the web page https://www.cainiaojc.com/tool/node/ still seem's buggy, and in view-source:https://www.cainiaojc.com/tool/node/, there's several cdn.staticfile.org in html body seems cannot redirect by Header Editor.

Details

```html   | -- | --   |   |     |     |     |   |   |   |   |   |   |   |   |   |   |   |   |   |   |   |   |   |   |   |     |   |     |   |

菜鸟教程   菜鸟教程(cainiaojc.com)

• HTML/CSS
  • HTML菜鸟教程
  • HTML5菜鸟教程
  • HTML参考手册
  • SVG 教程
  • CSS 教程
  • CSS 参考手册
  • CSS3教程
  • Bootstrap3 教程
  • Bootstrap4 教程
  • Font Awesome图标
• JavaScript
  • JavaScript 教程
  • JavaScript 参考手册
  • jQuery 教程
  • AJAX 教程
  • JSON 教程
  • AngularJS 教程
  • ReactJS 教程
  • NodeJS 教程
• 服务端开发
  • C++ 教程
  • Golang 教程
  • C 语言教程
  • PHP 教程
  • C# 教程
  • LINQ 教程
  • Lua 教程
  • Ruby 教程
  • Rust 教程
  • Linux 教程
  • R 语言教程
  • Docker 教程
  • Scala 教程
  • MatLab 教程
  • Erlang 教程
• Java教程
  • Java 教程
  • SpringBoot 教程
  • JDBC 教程
  • JSP 教程
  • Servlet 教程
  • Maven 教程
  • Spring 教程
• Python教程
  • Python 教程
  • Pandas教程
  • Numpy教程
  • Django 教程
  • Matplotlib 教程
  • Flask 教程
• 移动端
  • Swift 教程
  • Kotlin 教程
• 数据库
  • SQL 教程
  • MongoDB 教程
  • SQLite 教程
  • PostgreSQL 教程
  • MySql 教程
  • Redis 教程
  • Elasticsearch 教程
• 经验笔记
• 在线工具

  |   |

  |     |

  |
1. 首页
  |
2. 常用工具
  |
3. Node.js 在线编译器
  |

  |     |     |

  |     |

  |     |

  |

  |

  |

  |

  |   | PHP 在线运行   | R语言 在线运行   | VB.Net 在线运行   | Kotlin 在线运行   | Pascal 在线运行   | Lua 在线运行   | Node.js 在线运行   | Golang 在线运行   | Swift 在线运行   | Rust 在线运行   | Bash 在线运行   | Perl 在线运行   | Erlang 在线运行   | Scala 在线运行   | C# 在线运行   | Ruby 在线运行   | C++ 在线运行   | C语言 在线运行   | Java 在线运行   | Java8 在线运行   | JSP 在线运行   | Python 在线运行   | Python3 在线运行   | Jython 在线运行   | Julia 在线运行   | Lisp 在线运行   | D语言 在线运行   | Groovy 在线运行   | Haskell 在线运行   | F# 在线运行   | OCaml 在线运行   | Dart 在线运行   | MATLAB/Octave 在线运行   | Scheme 在线运行   | Prolog 在线运行   |   |   |

  |

  | 清空   | 点击运行   |

  |

  |

  |

  |

  | console.log("Hello World!");   |

  |     |

  |     |

  |     |

  |

  |

运行结果

  |

  |

  |     |

  |

  |

  |     |

  |

  | Node.js网页版在线编译器,是一款可在线编程编辑器,在编辑器上输入Node.js代码,点击运行,可在线编译运行Node.js,Node.js代码在线运行调试,Node.js在线编译,可快速在线测试您的Node.js代码,在线编译Node.js代码发现是否存在错误,如果代码测试通过，将会输出编译后的结果。   |

  |

  |     |

  |

  |

  |     |

  |

  |

  |     |     |

  |

  |

  |   |   |   |

Copyright ©2021 菜鸟教程 (cainiaojc.com)

  |   |     | ```

I've tried

*$replace=/"https?:\/\/cdn.(?:bootcdn.net\/ajax\/libs|bootcss.com|polyfill.io|staticfile.(net|org))\/(.*)"/"https://cdnjs.cloudflare.com/ajax/libs/\$2"/i

*$document,replace=/"https?:\/\/cdn.(?:bootcdn.net\/ajax\/libs|bootcss.com|polyfill.io|staticfile.(net|org))\/(.*)"/"https://cdnjs.cloudflare.com/ajax/libs/\$2"/i

*$script,stylesheet,replace=/https?:\/\/cdn.(?:bootcdn.net\/ajax\/libs|bootcss.com|polyfill.io|staticfile.(net|org))\/(.*)/https:\/\/cdnjs.cloudflare.com\/ajax\/libs\//i

which all fails. When I added @@||staticfile.org^ in static filter, uBlockOrigin recorder shows that half of the links named staticfile.net has changed into 'cdnjs.cloudflare.com/ajax/libs/*', but all staticfile.org still there. So how should I do next then ?

[stephenhawk8054]

all staticfile.org still there

I don't understand what you mean. If you mean you see the staticfile.org appearing in the logger, it's normal because each extension sees the same connections before they are redirected. Each extension cannot know what other extensions are doing with those connections.

The best way to check is using browser's network devtools and check which connections are being loaded / blocked for the websites.