Does anyone have recommendations for a Mastodon fork that doesn't require visitors to enable JavaScript to view basic content?

Does anyone have recommendations for a Mastodon fork that doesn't require visitors to enable JavaScript to view basic content? The JavaScript dependency is a security risk and user hostile. Visitors should not be required to enable JavaScript when simply visiting a Mastodon server. Plus, the recommendation to use a native app doesn't even work for all Mastodon/ActivityPub instances.

Also, the requirement for JavaScript makes the Mastodon development team seem incompetent. They can't even make a basic web site that doesn't require JavaScript. I could do that when I was in middle school.

>To use the Mastodon web application, please enable JavaScript. Alternatively, try one of the native apps for Mastodon for your platform.

#Mastodon #ActivityPub #MastoAdmin #SelfHost #Security

@seanm I am not 100% sure it works without javascript, but try: https://elk.infosec.exchange/

@seanm more than a fork, sounds that what you are looking for is an alternative front end that can be configure as the default on your site.

Unfortunately I have no idea if the is such thing. I know there are plenty of alternative web clients, but again, as far as I can tell that is now what you are looking for.

Just to be clear, I think JavaScript is fine for authenticated or more complex content. If I'm a user of a server, it seems acceptable that I should trust it and enable JavaScript.

However, if I am some random visitor to your instance and just trying to view a post or user profile, that should not require JavaScript.

The JavaScript ecosystem (e.g., npm) is rife with supply chain hacks. Plus, there are many poorly maintained Mastodon instances (e.g., mastodon.social, I think?). Although, I guess those poorly maintained instances are not pulling down the latest backdoored npm packages... Regardless, it is a security risk to require visitors run JavaScript from every instance they visit for simple content.

#Mastodon #ActivityPub #InfoSec #Security #MastoAdmin

@jerry unfortunately, it is just a blank page with JavaScript disabled.

@erick @seanm

I am not sure either, but for a good overview I can point you to the delightful fediverse experience curated list I maintain at:

delightful fediverse experience

Delightful curated lists of free software, open science and information sources.

(delightful.coding.social)

There are 2 other fedi related list, see.. https://delightful.coding.social/

@erick it's crazy that this is such a problem. Old Reddit, Twitter, Gmail, and most every popular website started as HTML/CSS functional. There are frontends like Nitter (for Twitter) that show this functionality is still possible.

Why is there such a drive to be so hostile to users and increase the risk to visitors?

@smallcircles @erick thank you. I'll take a look at those. I appreciate that the site doesn't require JavaScript just to view.

@seanm Since you're obviously smarter than the Masto team, why don't you code that up? The API is stable and well documented.