Basilisk is a free and Open Source XUL-based web browser, featuring the well-known Firefox-style interface and operation. It is based on the Goanna layout and rendering engine (a fork of Gecko) and builds on the Unified XUL Platform (UXP), which in turn is a fork of the Mozilla code base without Servo or Rust.
Basilisk as an application is primarily a vessel for development of the XUL platform it builds upon, and additionally a potential replacement for Firefox to retain the use of Firefox Extensions.
Basilisk is development software. This means that it should be considered more or less “beta” at all times; it may have some bugs and is provided as-is, with potential defects. Like any other Free Software community project, it comes without any warranty or promise of fitness for any particular purpose. That being said: of course we will do our best to provide an as stable and secure browser as possible with every official release of Basilisk.
It should be noted that because of this focus on platform development, the browser itself (the application code) will be released and maintained mostly as-it-is, with very little change or development on the user interface or browser front-end features.
Basilisk is a modern, full-featured web browser and as such requires a reasonably modern system to properly run.
Windows 7 or later. Windows XP or Windows Vista are not supported.
1GB of RAM (2GB or more recommended for heavy use).
Dedicated GPU strongly recommended.
A modern processor (must have SSE2 support as the absolute minimum)
v2017.11.30/v2017.12.01 Published 2017-12-01
Fixed add-on/GMP update calls to Mozilla services.
Enabled accessibility features.
Enabled parental Controls features (Windows only).
Changed blocklist hosting to self-hosted.
Removed leveraging the blocklist for CRL purposes.
Included the Universal Runtime Libraries with the browser.
No longer enforcing the “preferred” cipher suite profile on Http/2.
Added support for the worker-src CSP directive.
Fixed freetype glyph metrics in Skia (fixes Freetype 2.8.1+ issues).
Fixed an issue with ContentSecurityManager not passing the correct context.
Fixed a number of issues with Contenteditable elements.
Fixed a number of issues with pointer events.
Implemented “cookie-averse document objects” to mitigate cookie injection.
Fixed an issue with SVG text-based image masks.
Fixed the installer checking for Firefox instead of Basilisk.
Enabled the use of 64-bit plug-ins other than Flash and Silverlight.
Made the SVG texture cache more lenient to large-resolution SVG images.
Fixed several crashes and memory safety hazards.
Fixed several security bugs: CVE-2017-7837, CVE-2017-7832, CVE-2017-7830, CVE-2017-7835, CVE-2017-7831, CVE-2017-7838, CVE-2017-7839, CVE-2017-7828, CVE-2017-7840, and several others from Firefox 57 that do not have a CVE designation.