Nav0

Appearance

v0.2.3

Latest

April 21, 2026

Dialogs & Authentication

  • Blocking Alert / Confirm / Promptwindow.alert, window.confirm, and window.prompt now route through the unified overlay layer via a sync IPC bridge, so pages block as the spec requires instead of silently resolving
  • Basic & Proxy Auth Overlay — HTTP basic-auth and proxy-auth challenges are collected through an in-browser overlay and resolved (or cancelled) on the main process, replacing Electron's default prompt
  • Tab-Aware Dialogs — a background tab that triggers an alert or auth prompt is foregrounded first so the dialog is shown in the context of the page that spawned it
  • Safe Cancellation — outstanding dialogs and auth prompts are cancelled when the owning window closes so awaited promises and network callbacks never hang

Screen Sharing

  • getDisplayMedia Supportsession.setDisplayMediaRequestHandler is wired up so screen and window sharing on Meet, Zoom, and Teams stops silently failing
  • Source Picker UI — a dedicated picker renderer (display-capture-picker) lists available screens and windows via desktopCapturer.getSources, replacing the previous inline data: URL approach and following the same webpack entry / preload pattern as other built-in pages
  • Concurrent Request Isolation — per-request state is keyed on the picker's webContents id so overlapping share requests stay independent
  • Localhost & Local Network URLs — bare inputs like localhost:3000, 127.0.0.1, [::1], 0.0.0.0, and .local / .test / .lan / .internal / .home.arpa hosts are now treated as direct HTTP navigations instead of being sent to the search engine or force-upgraded to HTTPS

Stability & Security

  • Main-Process Crash Hardening — process-level uncaughtException and unhandledRejection handlers surface a throttled error dialog instead of bringing the whole browser down on a stray error
  • Top-Frame Permission Scoping — permission prompts and persistent decisions for sub-frame requests are now keyed to the top-frame origin, while still requiring both the top frame and the iframe to be on secure origins

Installer

  • Graceful Update When Running — the one-line curl installer no longer aborts when Nav0 is running. It prompts on the TTY, quits Nav0 via AppleScript (escalating to SIGTERM/SIGKILL if needed), and relaunches the new build. Set NAV0_ASSUME_YES=1 to skip the prompt for automation
  • Tighter Process Detection — detection uses pgrep -x Nav0 with a bundle-path fallback, so Electron helper and renderer processes no longer false-positive

Released under the MIT License.

Copyright Ketan Patil