New Release: Tor Browser 10.0a7

Tor Browser 10.0a7 is now available from the Tor Browser Alpha download page and also from our distribution directory.

Note: This is an alpha release, an experimental version for users who want to help us test new features. For everyone else, we recommend downloading the latest stable release instead.

We are happy to announce the third alpha for desktop users based on Firefox 78 ESR. The Android version is under active development and will be available in the coming weeks.

Tor Browser 10.0a7 updates NoScript to 11.0.43. The Windows installer now uses NSIS 3.06.1. Please report bugs with steps to reproduce, either here or on Gitlab, or essentially with any other means that would reach us. We are in particular interested in potential proxy bypasses which our proxy audit missed.

Note: We encountered updater issues for all alpha users that have been auto-updating the alpha series for months. We changed the accepted MAR channel ID to torbrowser-torproject-alpha as we are on an alpha channel. The assumption was that enough time passed since we changed it last time to torbrowser-torproject-release,torbrowser-torproject-alpha but it turns out that change did not get applied. Workaround: change the torbrowser-torproject-release in your update-settings.ini (in the Browser's code directory, which depends on you operating system) file to torbrowser-torproject-alpha and the update should get applied successfully. Alternatively, downloading a fresh alpha copy of Tor Browser works as well. Sorry for the inconvenience.

The full changelog since Tor Browser 10.0a6 is:

• Windows + OS X + Linux
  • Update Tor Launcher to 0.2.24
  • Translations update
  • Update NoScript to 11.0.43
  • Bug 10394: Let Tor Browser update HTTPS Everywhere
  • Bug 32017: Use ExtensionStorageIDB again
  • Bug 40006: Fix new identity for 81
  • Bug 40007: Move SecurityPrefs initialization to the StartupObserver component
  • Bug 40008: Style fixes for 78
  • Bug 40066: Remove default bridge 37.218.240.34
  • Bug 40073: Repack omni.ja to include builtin HTTPS Everywhere
  • Bug 40091: Load HTTPS Everywhere as a builtin addon
  • Bug 40102: Fix UI bugs in Tor Browser 10.0 alpha
  • Bug 40109: Playing video breaks after reloading pages
  • Bug 40119: Enable v3 extension blocklisting again
  • Build System
    • Windows + OS X + Linux
      • Bump Go to 1.14.7
      • Bug 40031: Add licenses for kcp-go and smux.
      • Bug 40045: Fix complete .mar file creation for dmg2mar
      • Bug 40065: Bump debootstrap-image ubuntu_version to 20.04.1
      • Bug 40087: Deterministically add HTTPS Everywhere into omni.ja
    • Windows
      • Bug 40052: Bump NSIS to 3.06.1
      • Bug 40071: Be explicit about no SEH with mingw-w64 on 32bit systems
      • Bug 40077: Don't pass --no-insert-timestamp when building Firefox
      • Bug 40090: NSIS 3.06.1 based builds are not reproducible anymore