Trusted Types API not supported on Firefox / CSP error / "No youtube video found" error

[Sv443]

Since Firefox 135, the Trusted Types API is an experimental feature that can be enabled with the about:config pref dom.security.trusted_types.enabled
Switching it to true makes the extension not work anymore, because it's doing innerHTML assignment without sanitizing the HTML with a Trusted Types Policy.
Chromium has this feature on by default, so I see no reason why it wouldn't also work on Firefox. Maybe it's switched off via browser detection instead of the recommended way via feature detection?
For now I guess this doesn't have the highest priority, but the existence of the experimental pref means Mozilla is working on implementing it soon.

Here are all the errors that are thrown:

[Sv443]

I've had my own run-ins with this problem and had to implement a wrapper function that checks if("trustedTypes" in window)
Maybe my code can help you:

• Trick the browser and don't do sanitization: https://github.com/Sv443-Network/UserUtils/blob/v9.4.1/lib/dom.ts#L276
• Advanced sanitization with DOMPurify: https://github.com/Sv443/BetterYTM/blob/v3.0.0/src/utils/dom.ts#L321

[ajayyy]

Extensions are supposed to be immune to trusted types. Content scripts do have to abide by it (which the document.ts file is), but not extension files

[Sv443]

Well all I know is that it works with the pref disabled and doesn't with it enabled. Maybe this is just a bug on Mozilla's side, but I still wanted to report it for future reference and just in case.