cosmetix

[guerillascript.git] / README

what is Guerilla Scripting?
===========================

GS is a userscript injecting engine, somewhat like GreaseMonkey, but
aimed at knowledgeable power users. GS was modelled after Opera 12
userscript engine, but with support for some GreaseMonkey API.

GS has absolutely no GUI controls, as power users using developer console
anyway. ;-) it has it's own command in developer console (shift+f2):
"guerilla". this is the preferred (and the only one) way to dynamically
control GS (except some preferences in about:config page).

you probably will not need anything except "guerilla reset", though,
which resets GS caches. you may need that if GS is not able to see
changes in your script, and you certainly will need it if you changed
one of the @require'd or @library files.

GS also don't have any l10n, and probably will not have any. as there is
no GUI and no user-visible dialogs, i don't see any real value in adding
l10n to GS.


how Guerilla Scripting works?
=============================

contrary to GreaseMonkey, GS doesn't need any registration of
userscripts. simply copy your script in GS scripts directory with your
file manager, and GS should see it. to remove script, simply delete it or
change it's extension to someting that is not ".js".

if GS is unable to see new/updated/removed script, do "guerilla reset" in
developer console.

there is no itegration with any sites, nor automatic script updates from
teh internets. GS will *never* connect to any internet site on it's own,
it doesn't do any automatic installation or updating of userscripts.


is Guerilla Scripting secure?
=============================

the only way to add a userscript to GS is to MANUALLY copy it in GS
scripts directory (which is in your profile dir, named "guerillajs"). so
if you wrote all the scripts by yourself or got them from the friend you
can trust to, there should be no security breaches.

GS will not do any connections to any sites on it's own. but note that
userscripts are free to connect to any site they want (exactly as in
GreaseMonkey), and additionally, userscripts are free to read you local
files too. please, note that GreaseMonkey userscripts can't read your
local files ( they can try, but the request will fail), so you shouldn't
simply copy GreaseMonkey userscripts to GS without understanging what
they are doing under the hood.

the reason for giving GS userscripts access to local files is the
difference in addon target group. while GreaseMonkey is aimed at casual
users, GS is aimed at knowledgeable power users, who may want to squeeze
some more power from their userscripts.

WARNING! you should NEVER EVER install userscripts downloaded from
internet to GS, unless you know for sure what that scripts do and how.
if you'll install some malicious script downloaded from internet, that
script can breach your privacy, steal or alter your private data and so
on.

please note that GreaseMonkey scripts can do privacy violation to some
extent too, that is nature of userscripts.


API differences to GreaseMonkey
===============================

some GreaseMonkey API aren't implemented, and some implemented in
slightly different way. script @metas altered too.

API that should work the same in GS and GreaseMonkey:
  unsafeWindow
  GM_log
  GM_getValue
  GM_setValue
  GM_deleteValue
  GM_listValues
  GM_xmlhttpRequest
  GM_addStyle
  GM_openInTab(url[, background]) -- if `background` is boolean

extended API:
  GM_openInTab(url, options)
  options is an object which can contain such fields:
    bool background -- open tab in background
    bool afterCurrent -- open tab after current one,
                         if current is userscript tab

API that doesn't work (i.e. exists, but does nothing):
  GM_getResourceText
  GM_getResourceURL
  GM_registerMenuCommand
  GM_setClipboard

additional API:
  conlog (same as GM_log)
  logError (logs error message to error console)
  GM_generateUUID (same as in Scriptish)
  GM_cryptoHash (same as in Scriptish)
  GM_safeHTMLParser (same as in Scriptish)


@meta differences to GreaseMonkey
=================================

GS understands very small amount of @metas, and simply skips all keywords
it doesn't know.

working:
  @include
  @exclude
  @noframe
  @run-at

different:
  @require -- this works COMPLETELY different, see below

new:
  @libraries -- see below


changed @meta: @require
=======================

@require now can require only js files. all js files you want to @require
should reside in the directory named after your script. let me give a
sample.

let's assume you has script named "myscript.js" with such contents:

// ==UserScript==
// @require somecode.js
// ==/UserScript==

GS will look for file "./myscript/somecode.js", relative to "myscript.js"
directory.

if any @required file is absent, GS will refuse to run such userscript.

multiple @require for same file are allowed, but file will be loaded only
once, first time GS sees @require with it.


new @meta: @library
===================

userscripts can load common libraries. this is almost the same as
@require, only search path differs. libraries are always looked in
"./libs/" directory.

GS will load all @libraries first, and @require next, regardless of the
declaration order.


known bugs
==========

GS looks like restartless addon, but disabling it and enabling again will
not do any good yet. GS may stop working at all or work unstable/buggy.
i plan to fix that, but can't give any timeline.

if you changed @required file, but didn't touch main one, GS may not
notice the change. this probably will not be fixed, as monitoring
filesystem is costly, and will slow down GS.

probably many other bugs i didn't found yet.



good luck, and happy hacking!
Ketmar Dark  <ketmar@ketmar.no-ip.org>