Does the Okular pdf viewer both for Linux and for Windows use javascript?
If yes is that as dangerous as the javascript in Adobe acrobat reader?
Yes, Okular uses the QJSEngine provided by the Qt framework for running the JavaScript in a sandboxed environment.
Probably not as it is sandboxed.
Currently, Evince by GNOME doesn’t support javaScript.
There’s a fork of Evince that is ported to GTK4 and Rust called Papers.
If anyone knows of a way to disable JavaScript in Okular (EDIT: doesn’t seem to be possible yet), please share, or if there are more secure pdf viewers/editors out there.
I would just eliminate that attack vector by going into about:config
search for “pdfjs.enableScripting” and set it to false
in Firefox.
For brave