NoSript 2.3.2 had no less than five release candidates before being released as a stable. And even so, the stable build has some interesting fixes and adds two new features that should lead to better protection against cross-site scripting (XSS) attacks.
Newly added to this release is an event injection that checks for page with no scripts, too, in order to prevent edge-case execution on permissions change. Also, NoScript 2.3.2 introduces better tagging of surrogate sandboxes for “about:memory” debugging.
Repairs available in this revision refer to a regression in RC5 that prevented some URLs from loading. The issue with Chinese pages using HZ-GB-2312 encoding has also been wiped, as well as the InjectionChecker JavaScript scanning bug. Also, HTML detection accuracy has been improved.