Security-wise, disabling JIT means 50% less code responsible for eval / running untrusted (in some cases, adversarial) code (Interp being the other 50%).
Historically, roughly half the security bugs in v8 (Chrome’s / Brave’s JavaScript engine) have been due to attacks on the JIT compiler. Coding up a hardened JIT compiler is a tall order, and so, in the meanwhile disabling it (at the cost of upto 1.5x performance) is considered prudent.
/cc: @SkewedZeppelin
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| V8 JIT JavaScript/Wasm engine can be disabled & configured on a per-site basis in Chromium 122 | 14 | 3230 | February 29, 2024 | |
| Thoughts on Brave PoW (Proof of Work) captchas? | 8 | 698 | December 2, 2024 | |
| Brave vs Trivalent Security | 80 | 6910 | December 18, 2025 | |
| Hardening Brave further - Question | 2 | 1876 | January 9, 2024 | |
| Return of the JIT | 4 | 566 | July 11, 2024 |
Massive organizations are monitoring your online activities. Privacy Guides is your central privacy and security resource to protect yourself online.
Privacy Guides is a non-profit, socially motivated website that provides information for protecting your data security and privacy.
We do not make money from recommending certain products, and we do not use affiliate links.