[handsomeransoms]

(SecureDrop dev here) Glad you like it! It's hard to tell people who get excited about fun UX ideas that they can't use JS, but from my experience as a browser security engineer, eliminating JavaScript (and plugins, which the TBB does already) dramatically reduces the browser's (unfortunately enormous) attack surface.

[toni]

Agreed with you completely. Every time a new web app is posted to HN and it doesn't work without enabling Javascript, a small circle of security-conscious people complain about it. The responses from other people are in the lines of:

"Are there really people that browse the internet without enabling Javascript in 2014?"

"Well, 0.01% of your users have Javascript disabled, you can safely ignore them"

"Javascript is an important part of the web, if you have it disabled, you have no right to complain"

We need more people like you to advocate secure browsers without using Javascript.