this post was submitted on 12 Feb 2026
6 points (57.1% liked)

JavaScript

2655 readers
92 users here now

founded 2 years ago
MODERATORS
erlingur@programming.dev
Ategon@programming.dev
nick@programming.dev
6
"your website doesn't work without javascript" (lemmy.blahaj.zone)
submitted 11 hours ago by vantablack@lemmy.blahaj.zone to c/javascript@programming.dev
22 comments fedilink hide all child comments
 

https://cyberpunk.lol/@vantablack/114756539405197662

top 22 comments
sorted by: hot top controversial new old
[–] ICastFist@programming.dev 7 points 7 hours ago* (last edited 6 hours ago)

This woman is part of the problem of the current internet. There are only a few sites that make sense to only work with JS enabled and federated social media is NOT one of those. Wanna know why? Because all the JS bullshit is just to make shit "pretty". The data isn't - rather, should NOT - reside entirely in the JS.

EDIT - To make matters worse, the site in question is this - https://bestestmotherfucking.website/ ; which is "inspired" by Motherfucking Website and Better Fucking Website. I'm thinking this is just trolling and we fell for it

[–] Piatro@programming.dev 35 points 10 hours ago (2 children)

Got to disagree there. Websites should work without js. Sure it shouldn't have fancy animations or whatever but I should be able to read it.

[–] socsa@piefed.social 3 points 7 hours ago

E S O T E R I C

[–] schnurrito@discuss.tchncs.de 13 points 10 hours ago (1 children)

Depends on what kind of website we are talking about.

If it's a website whose purpose to display an article or images or similar, I agree with you.

If its main purpose is something that requires interaction by the user (i.e. it's a "web app"), then it's not a reasonable expectation that it should work without JS, and then I agree with the OP.

[–] ICastFist@programming.dev 3 points 7 hours ago (1 children)

Even "web apps" don't necessarily need javascript. Is a forum a web app? It has plenty of user interaction and forums without javascript have existed since before HTML. Even stuff like Mastodon doesn't necessarily need javascript, it can work as static pages.

[–] schnurrito@discuss.tchncs.de 2 points 1 hour ago

I agree that these are more of a continuum than a binary.

[–] NigelFrobisher@aussie.zone 16 points 9 hours ago (1 children)

I hate this cursed timeline where even finding out the opening hours of a restaurant needs to load half a dozen frameworks.

[–] Canconda@lemmy.ca 1 points 7 hours ago

I hate the padded aesthetic of everything. Like I use an old.reddit clone on lemmy cuz I just wanna access the content ffs.

[–] Bronzebeard@lemmy.zip 13 points 9 hours ago

Nope. Fuck your site.

[–] SpaceNoodle@lemmy.world 23 points 11 hours ago* (last edited 11 hours ago)

I remember when webservers served content, and didn't just pass me megabytes of bloated spaghetti and say "here, YOU run this."

[–] NaibofTabr@infosec.pub 9 points 9 hours ago* (last edited 9 hours ago) (1 children)

So... there's a practical difference between rendering markup, which is handled by the browser engine and generally benign, and running executable script, which is frequently malicious.

Allowing your website to load JavaScript means that I'm allowing you to execute arbitrary code on my hardware. Hopefully the potential blast radius of any malicious code is limited by safety precautions in my web browser, but a web browser is not a security barrier and should not be relied on to protect the local system from malicious code downloaded from the Internet. The most pernicious and seemingly unavoidable behavior of JavaScript on most websites is device fingerprinting, and to get a better understanding of how much of a problem that is check out https://coveryourtracks.eff.org/

The simplest step to prevent a lot of this malicious behavior is to block executable script. This is not really a new thing on the Internet, as extensions like NoScript have been around for 2 decades and have millions of users. This should be anticipated by the web developer as a completely normal use case.

Competent web developers understand that they have privacy-conscious users who block external executable script as a matter of course. Your website(s) should be designed to account for this, and should at least render and display information in a readable way without needing to execute your un-vetted code on the user's system. Maybe some dynamic functions of the website don't work, but that's OK as long as the majority of the site is accessible. A JavaScript-dependent website is no better than a Flash-dependent website, in terms of security, privacy, and professionalism.

NoScript frames this as a consent issue, and that's probably valid:

NoScript enables consensual browsing: your browser, your choice!

[–] ulterno@programming.dev 0 points 48 minutes ago

I am not even a Web Dev. Just made a little profile site, which I didn't even complete.
And I tested it without JS.

[–] mmmm@sopuli.xyz 14 points 10 hours ago (3 children)

So if for any chance you can't use JS (outdated browser, outdated system, text-based browser, JS disabled by an admin, JS won't load, assistive technology) then... it's your fault?

[–] fruitcantfly@programming.dev 2 points 15 minutes ago* (last edited 13 minutes ago)
  • outdated browser - your fault, and a foolish thing to use considering the modern, online threat landscape
  • outdated system - your fault, and like above you probably shouldn’t connect to the internet with that thing
  • text-based browser - your fault, and it shouldn’t surprise anyone that websites break when you use a browser that misses major functionality
  • JS disabled by an admin - your admin’s fault. Go complain to them, not to anyone else
  • JS won’t load - depends on reason for why JS fails to load
  • assistive technology - depends on the reason; your assistive software may be broken or misconfigured, or the website fails to follow best practice
[–] Klear@quokk.au 4 points 8 hours ago

Or what if you don't have internet? Is it your fault you can't access the website?

[–] Yaky@slrpnk.net 0 points 10 hours ago (1 children)

Also, if your browser does not support latest TLS and does not have latest root certificates, it's your fault. /s

Let me load HTTP without the S if I want to.

[–] spartanatreyu@programming.dev 2 points 7 hours ago

Let me load HTTP without the S if I want to.

No, that let's companies man-in-the-middle you.

ISPs literally couldn't help themselves inject ads and other scripts that lagged and broke everything on every website all to chase a few bucks.

HTTPS prevents them from doing that.

[–] nykula@piefed.social 13 points 10 hours ago (1 children)

JavaScript has been my favorite language for a decade. Still, I try to make websites server-rendered so that they can be read if my code fails to load or execute. For example, there are power outages in Ukrainian cities for most of the day because of the war. When there's no power, there's still 4G for a while but it switches to economic mode and slows down to a crawl. The websites of the monopolist energy company require a lot of JavaScript. It often fails to load for me during the outage. It's also not keyboard-accessible because of how its JS is implemented (I won't image I'd do better, they have a team while I'm a solo programmer, but I try and they don't). For me to see when there will be electricity at what place and plan where to go study and work, I have to rent a VPS, scrape their website and show me a static table that doesn't require JS to load. Some code to see what I mean: https://codeberg.org/nykula/powerup

[–] dan@upvote.au 4 points 10 hours ago (1 children)

JavaScript has been my favorite language for a decade. Still, I try to make websites server-rendered so that they can be read if my code fails to load or execute

Have you tried Astro? It's good for exactly this. You write Astro components that look a little bit like React components, but they're all rendered either during the build (when using static site generation) or server-side.

You get the developer experience of a modern JS framework, with the output of a static site with minimal JS.

[–] nykula@piefed.social 4 points 9 hours ago

Yes, I tried multiple popular SSR frameworks and use one at work. As a hobby, I've been making my own SSR framework that is much more minimal, based on Preact, Valibot, Vite, node:sqlite, URLPattern, gettext.js and a few companion libraries. (But components look more like old-school Mithril than React because no JSX extension, just standard JS.) I want its node_modules to stay below 200 MB and to pick such dependencies that the apps built with it can be included in Debian repositories and potentially FreedomBox. Hopefully I'll be ready to make a fedi post about it next month.

[–] JakenVeina@midwest.social 5 points 9 hours ago

There's a difference between a website and a web app. Websites indeed should not require JavaScript to function. Web apps are a different beast where, yes, disabling JavaScript means you are opting yourself out of being able to use the app.

[–] OfCourseNot@fedia.io 2 points 7 hours ago

Fuck this.

The state of the web, and software in general, is fucking abysmal. And it is in no small part due to this kind of shit. You want this recipe/news/whatever? Here is a hundred mbs of frameworks, trackers, spyware...

What's even the point nowadays when every website, sorry, 'wEb ApP' is going to make me install their crappy app to give me full functionality? Then the app is just a web view (when not a wrapped full fledged web browser) to present their shitty web but with more privileges.