Apr 07 2020 10:54 AM - edited Apr 14 2020 10:54 AM
Note: This is no longer the most recent top feedback summary. You can always find the latest at https://aka.ms/MSEdgeTopFeedback.
Greetings, Insiders! Welcome to the first full week of April! We’re excited to close out a couple more items, as well as bring a few new ones to this list.
First up, the newly Addressed! Option to set a custom photo as the New Tab Page background photo is now in our Dev channel. Here’s how you can try it out:
Let us know what you think! We know this has been something the community has asked us to implement for a while now and we’re really excited to be bringing this to you all.
Our other Addressed item this week, Provide option to keep specific cookies when choosing to clear browsing data on close, is also something we know the community has wanted. Starting today in Dev, when you navigate to edge://settings/privacy and click on Choose what to clear every time you close the browser, you will see several options you can toggle now.
When you click on the option for Cookies and other site data you can add in specific sites to not clear on exit. This will help you keep the cookies you want while ensuring the ones you don’t want are removed on exit of the browser. Think we’re missing something in this list? Let us know via the feedback tool! As you are aware, the team is always reviewing that feedback to help refine decisions we’ve made.
Now for the new items! There are a couple of issues we’ve seen reports of that we are now adding to this list to keep track of. MSA profile picture is not updating is being added under Planned. Mouse cursor sometimes disappears is an item we now have listed In Discussion. The team is currently investigating reports for both of these. If you happen to notice your cursor disappearing while using a touch pad or see a generic profile picture when you have a profile picture set, please submit feedback through the browser including full diagnostics. This will massively help the team out with their investigations. We’ll provide updates on both of these as we get them.
Lastly, a popular item requested has been Add ability to close tabs via double-click and we’re adding it to Under Review. As with the other items, we’ll provide updates for this as the team discusses and reviews.
If you made it this far, you’re probably wondering why we haven’t mentioned something about the new tab page items we marked as Addressed last week. We provided an update to that, and we’re still talking with the team to address the questions you’ve raised. Once that’s finalized, we will provide that information over in last week’s top feedback thread. We absolutely appreciate your patience around this.
Here’s this week’s updated list:
Status |
Feedback |
On this list for |
Addressed |
Provide option to keep specific cookies when choosing to clear browsing data on close |
21 weeks |
Addressed |
Option to set a custom photo as the New Tab Page background photo |
33 weeks |
Planned for Summer |
Enable sync of browsing history between devices |
22 weeks |
Planned |
MSA profile picture is not updating |
NEW! |
Planned |
Some users lose their favorites on update to Microsoft Edge |
2 weeks |
Planned |
Allow more top sites on the New Tab Page |
5 weeks |
Planned |
Highlighter tool for PDF files |
8 weeks |
Planned |
Enable navigation of PDF files via table of contents |
8 weeks |
Planned |
Edge cannot find devices to cast media |
10 weeks |
Planned |
Make Edge available on Linux |
11 weeks |
Planned |
Support read aloud of PDF files |
11 weeks |
Planned (Join the discussion) |
Add the ability to ink on web pages |
23 weeks |
Planned (Join the discussion) |
Provide different options for sorting favorites |
33 weeks |
Planned |
Support themes from the Chrome Web Store |
33 weeks |
Planned |
Provide an option to prevent auto-play of video and audio when you open a website |
33 weeks |
In Discussion |
Mouse cursor sometimes disappears |
NEW! |
In Discussion |
Ask users if they want to close all tabs when they close a browser window |
28 weeks |
In Discussion |
Provide a transparent theme for the browser frame |
29 weeks |
In Discussion |
The address bar and its text are too big, and should be smaller like Chrome |
31 weeks |
In Discussion |
Bring the tab set aside feature from the current version of Microsoft Edge |
33 weeks |
In Discussion |
Update the user interface with the Fluent Design System |
33 weeks |
In Discussion |
Make tabs more square and less rounded, like the current version of Microsoft Edge |
33 weeks |
In Discussion (Join the discussion) |
Provide run / open / save / save as options when downloading files |
33 weeks |
In Discussion (Join the discussion) |
Bring the Ask Cortana feature from the current version of Microsoft Edge |
33 weeks |
In Discussion (Join the discussion) |
Bring the reading list feature from the current version of Microsoft Edge |
33 weeks |
In Discussion (Join the discussion) |
Bring the tab preview feature from the current version of Microsoft Edge |
33 weeks |
Under Review |
Add ability to close tabs via double-click |
NEW! |
Not Planned |
Support mouse gestures for common actions like navigation and tab close |
13 weeks |
Not Planned (View the discussion) |
Allow sign-in to the browser with a Google account |
23 weeks |
And here’s the list of top “quality areas” that we’re actively working on in response to your feedback:
Bring more extensions to the extensions store |
Edge should use less memory than it does |
Edge should use less CPU than it does |
Scrolling should feel smoother for web pages |
Scrolling should feel smoother for PDF files |
Opening a new tab is too slow |
Update does not always work reliably |
Definitions:
Addressed – Changes to address this feedback are visible to all users in the Canary and Dev channels
Not Planned – We don’t currently plan to address this feedback, though we will continue to track it and reconsider our approach if needed.
Planned for… – We’re working on this and currently plan for it to be addressed in the Canary channel before the end of the month indicated.
Planned - We have reviewed this feedback and have a plan to address it. However, we aren't ready to share a target time frame just yet.
In Discussion – We’ve reviewed this feedback and to learn more we have started a discussion about it here in the Microsoft Edge Insider Forum.
Under Review – We are reviewing this feedback internally and do not have a plan to share at this time.
Quality Area – We will give extra weight to fixes and opportunities in this area. Please continue to report specific bugs and make specific asks.
Archive of previously addressed topics:
Feedback |
On this list for |
Addressed on |
Add an option to hide the Bing search bar on the new tab page (Learn more) |
32 weeks |
Mar 31, 2020 |
Allow the search bar in the new tab page to be configured with other search providers (Learn more) |
32 weeks |
Mar 31, 2020 |
Provide an option to set a custom URL for a new tab instead of showing the new tab page (Learn more) |
32 weeks |
Mar 31, 2020 |
Enable sync of installed browser extensions between devices |
19 weeks |
Mar 19. 2020 |
Some users are unable to access any web page |
3 weeks |
Mar 11, 2020 |
Favorites sync issues, including sync not working, deleted favorites reappearing, and favorites being duplicated |
13 weeks |
Mar 4, 2020 |
Provide an option to add a share button to the tool bar |
17 weeks |
Feb 26, 2020 |
Need for better handling of links when there is more than one profile |
26 weeks |
Feb 21, 2020 |
Touchpad two-finger scrolling is sometimes triggering a right click instead |
24 weeks |
Feb 21, 2020 |
Add the ability to change the location for news content on the new tab page |
20 weeks |
Jan 22, 2020 |
Provide the ability to change the title of tiles on the new tab page |
22 weeks |
Jan 22, 2020 |
Enable search in the extensions store |
17 weeks |
Dec 19, 2019 |
The taskbar icon is not updating to the new Microsoft Edge logo |
1 week |
Nov 14, 2019 |
A round of improvements to scrolling experience, with more (including performance) to come down the line |
12 weeks |
Nov 14, 2019 |
YouTube.com does not render properly and appears extremely magnified |
1 week |
Nov 4, 2019 |
Bring the OneNote Web Clipper to the Microsoft Edge extensions store |
4 weeks |
Nov 4, 2019 |
Improve discoverability of the home button since some users are asking for it. (Join the discussion) |
8 weeks |
October 29, 2019 |
Microsoft Edge is crashing whenever a new tab is opened from a link |
1 week |
October 22, 2019 |
Inking for PDF files |
9 weeks |
October 22, 2019 |
Provide an option to remove the send feedback “smiley” button from the toolbar |
1 week |
October 15, 2019 |
Show the New Tab Page in dark theme when the browser is in dark theme |
6 weeks |
October 1, 2019 |
Add the ability to turn off the news feed on the new tab page |
6 weeks |
October 1, 2019 |
ClickOnce deployment of Windows applications from web pages |
6 weeks |
October 1, 2019 |
Website elements are being flipped upside down when switching between tabs |
1 week |
September 17, 2019 |
Sign-in profile picture is not always kept up to date |
4 weeks |
September 17, 2019 |
“Administrator Mode Detected” error message when opening the browser |
2 weeks |
September 4, 2019 |
Add a favorites button to the toolbar, for quicker access to favorites |
1 week |
August 29, 2019 |
Make it easier to share web content with other users and apps |
1 week |
August 29, 2019 |
Drop down menus in some web pages are not working |
1 week |
August 29, 2019 |
Add a dark theme to Microsoft Edge |
Addressed before these posts started |
|
Build translation capabilities into the browser |
Addressed before these posts started |
|
Delete browsing history on exit |
Addressed before these posts started |
|
Show favorites bar only on the new tab page |
Addressed before these posts started |
|
Bring back reading view |
Addressed before these posts started |
|
Sync data with my work or school account |
Addressed before these posts started |
|
Apr 12 2020 06:06 AM
Let me clarify a bit, when loading photos locally inside Windows like for example consider Lock Screen in Windows 10, if you remember at some point you weren't able to upload image locally because some malicious code embed into image and when user add them, they would damage system and once Windows team assure of its security and make sure image couldn't harm system, they made that option available.
Same process here, we are upload them locally and technically speaking it is about retrieving image source locally and if there are malicious code inside image , then it might execute exploit and leads to 0-days. Take note we are talking about local upload or address like we do for Windows background and lock screen today. But this also would required certain validations and checking locally and I post this as reminder for Microsoft Edge team to take these into consideration , I am referencing to old 0-days when opening picture could cause execution of exploit or malware.
Apr 12 2020 09:56 AM
@Reza_Ameri-Archived wrote:
Let me clarify a bit, when loading photos locally inside Windows like for example consider Lock Screen in Windows 10, if you remember at some point you weren't able to upload image locally because some malicious code embed into image and when user add them, they would damage system and once Windows team assure of its security and make sure image couldn't harm system, they made that option available.
Same process here, we are upload them locally and technically speaking it is about retrieving image source locally and if there are malicious code inside image , then it might execute exploit and leads to 0-days. Take note we are talking about local upload or address like we do for Windows background and lock screen today. But this also would required certain validations and checking locally and I post this as reminder for Microsoft Edge team to take these into consideration , I am referencing to old 0-days when opening picture could cause execution of exploit or malware.
I know All of them, they are not related.
if a user has a picture that contains malware then the Antivirus should detect it, not Edge.
Apr 12 2020 11:45 AM - edited Apr 12 2020 11:49 AM
@MissyQ Why is the S still not capitalised in the ‘search the web for …’ context menu entry when the browser language is set to English UK? I would like to see this fixed.
Apr 13 2020 06:25 AM
There is concept known as defense in depth , meaning there would be multiple layer of protection and Anti-Malware is only one layer of protection. My example discuss about pro-active protection techniques which are built into the upload code with certain validation and these are techniques for validating input files and there has been similar cases in past and I am adding this reminder and concentrate on source code for validating uploads file which would reduce risks.
For example, IIS able to defend most web-based attacks but Microsoft Edge still has some defensive techniques like Anti-XSS, just to add another defense layer and make it harder to cybercriminals and hackers.
Apr 13 2020 06:33 AM
@Reza_Ameri-Archived wrote:
There is concept known as defense in depth , meaning there would be multiple layer of protection and Anti-Malware is only one layer of protection. My example discuss about pro-active protection techniques which are built into the upload code with certain validation and these are techniques for validating input files and there has been similar cases in past and I am adding this reminder and concentrate on source code for validating uploads file which would reduce risks.
For example, IIS able to defend most web-based attacks but Microsoft Edge still has some defensive techniques like Anti-XSS, just to add another defense layer and make it harder to cybercriminals and hackers.
Microsoft Defender/Windows Security is not a single layered protection solution.
by the way, not sure what gave off that impression? but I never said I need to relearn about those subjects. and they are pretty much off-topic.
there is personal messages on the website if you need.
Apr 14 2020 06:07 AM
Firstly, this is public forum so when you response to message , I will need to reply back to clarify my message. There are other people who are visiting this forum and may be subject is clear for you but it is not clear for others. Your reply gave me expression that I need to clarify, there is nothing personal.
I don't think it is out of topic, it is just security reminder for Microsoft Edge developers and there have been similar attacks in past, so I believe this is important reminder.
Apr 14 2020 06:55 AM - edited Apr 14 2020 07:25 AM
@Reza_Ameri-Archived wrote:
Firstly, this is public forum so when you response to message , I will need to reply back to clarify my message. There are other people who are visiting this forum and may be subject is clear for you but it is not clear for others. Your reply gave me expression that I need to clarify, there is nothing personal.
I don't think it is out of topic, it is just security reminder for Microsoft Edge developers and there have been similar attacks in past, so I believe this is important reminder.
Like I said it's not for Edge but for Windows security/Microsoft Defender to protect the files in the OS.
so that is off topic because not related to Edge.
and the reason is that the pictures we use for Edge NTP background are not uploaded anywhere to the Internet, it's for offline use.
I can post some random security texts here and call them related as well but they're not.
Apr 14 2020 07:29 AM
It is relevant to Microsoft Edge, because when Microsoft Edge allow ability to upload or read image from windows, it might lead to exploit new vulnerability and I am sharing preventive reminder. I don't want to see 0-day vulnerability where this feature cause hackers to take complete control of Windows. Most of 0-days vulnerabilities available in any browsers is detectable by Windows Defender as malware but their product teams still patch them, because it is issue with exploit in their products.
Please refer to latest lock screen and Windows background exploit in past ten years and look into their attack model and you see it is relevant. If Microsoft Edge don't add feature of upload local picture, there is no exploit or 0-days. But I am not saying to remove this feature, I am saying when there is such a feature, there are risk of 0-days and they have to be careful and validate it correctly in the source code of Microsoft Edge.
Apr 14 2020 07:52 AM
@Reza_Ameri-Archived wrote:
It is relevant to Microsoft Edge, because when Microsoft Edge allow ability to upload or read image from windows, it might lead to exploit new vulnerability and I am sharing preventive reminder. I don't want to see 0-day vulnerability where this feature cause hackers to take complete control of Windows. Most of 0-days vulnerabilities available in any browsers is detectable by Windows Defender as malware but their product teams still patch them, because it is issue with exploit in their products.
Please refer to latest lock screen and Windows background exploit in past ten years and look into their attack model and you see it is relevant. If Microsoft Edge don't add feature of upload local picture, there is no exploit or 0-days. But I am not saying to remove this feature, I am saying when there is such a feature, there are risk of 0-days and they have to be careful and validate it correctly in the source code of Microsoft Edge.
If someone has a bad image that has malware code in it, it's a time bomb, if not today, tomorrow it will be run. if not in Edge, some other photo viewer or opener will run it.
that's why Windows Defender (or any other AV) is the more thorough and proper solution for it.
Edge is simply one of the thousands of ways that a photo with malware code can harm a user.
Apr 14 2020 08:01 AM
If there is a malicious file including image , Windows Defender is there to protect user and SmartScreen filter in Microsoft Edge even could prevent it from download and there is another SmartScreen filter in Windows to make sure they won't get in. However, based on Microsoft Security Development Lifecycle which discussed pro-active measurements against exploit and it is pro-active method to enhance security in application itself. This is important requirement and what I mentioned should be placed directly into non-Functional Requirement under Security for Microsoft Edge project.
Apr 14 2020 08:09 AM
@Reza_Ameri-Archived wrote:
If there is a malicious file including image , Windows Defender is there to protect user and SmartScreen filter in Microsoft Edge even could prevent it from download and there is another SmartScreen filter in Windows to make sure they won't get in. However, based on Microsoft Security Development Lifecycle which discussed pro-active measurements against exploit and it is pro-active method to enhance security in application itself. This is important requirement and what I mentioned should be placed directly into non-Functional Requirement under Security for Microsoft Edge project.
Or it can rely on Windows Defender to protect not only Edge but ALL applications that users have on their computer, improving detection of the built in security solution in Windows is better than securing a single program.
Apr 14 2020 08:30 AM
Edge and Windows Defender are tightly integrated. Edge provides the browser and WD provides all the security it needs.
Edge uses Windows Defender to check files, it uses SmartScreen to check downloads and URLs, uses WD PUA to check downloaded programs in Edge, uses WDAG to create secure browsing sessions etc.
so it's always Edge + Windows Defender
and just like this case with pictures, Edge should use WD's engine to check pictures for any malicious code before they are put as background in NTP. WD should also protect users from all other applications, that's the whole point. Windows and Edge are both Microsoft's products so they should create a safe environment for the user and not just for an application.
Apr 14 2020 09:15 AM
I am familiar with architecture of Windows and Microsoft Edge including Windows Defender.
What you are saying is ideal condition when Windows Defender is on and there is no 0-days. During Windows XP era people believed Anti-Malware could protect against everything while we are facing scenario where it is not always true. In general when there is 0-days in any Microsoft Products like Microsoft Edge, Internet Explorer ,etc. they could just release signature to Windows Defender but they also release patch for specific product , because new security architecture is based on proactive measurement.
Apr 14 2020 10:04 AM
@Reza_Ameri-Archived wrote:
I am familiar with architecture of Windows and Microsoft Edge including Windows Defender.
What you are saying is ideal condition when Windows Defender is on and there is no 0-days. During Windows XP era people believed Anti-Malware could protect against everything while we are facing scenario where it is not always true. In general when there is 0-days in any Microsoft Products like Microsoft Edge, Internet Explorer ,etc. they could just release signature to Windows Defender but they also release patch for specific product , because new security architecture is based on proactive measurement.
Same here.
I know, 0-day bugs apply to everything, not just Edge.
Apr 15 2020 06:02 AM
True, what I have discussed is proactive method to reduce 0-days. I shared it based on my experience with exploit and 0-days and I have seen similar attacks on other application so I gave early warning.
Apr 15 2020 06:06 AM
@Reza_Ameri-Archived wrote:True, what I have discussed is proactive method to reduce 0-days. I shared it based on my experience with exploit and 0-days and I have seen similar attacks on other application so I gave early warning.
Okay, based on my experience it's better to inoculate the 0-days and exploits at OS level for all applications.
Apr 16 2020 06:03 AM
Windows has great protection against 0-days, I believe you already know about Exploit Protection in Windows 10. However, application developers also are responsible to develop secure codes and prevent 0-days and it is practice in Microsoft Office, Microsoft Edge and other Microsoft products too.
Apr 16 2020 07:21 AM
@Reza_Ameri-Archived wrote:
Windows has great protection against 0-days, I believe you already know about Exploit Protection in Windows 10. However, application developers also are responsible to develop secure codes and prevent 0-days and it is practice in Microsoft Office, Microsoft Edge and other Microsoft products too.
in case of files containing malware, it's the job of Windows Defender to take care of it.
Apr 16 2020 07:38 AM
It is about Exploit and not malware, uploading photo which I mentioned earlier is concern would might leads to 0-days vulnerability.
Apr 16 2020 07:39 AM
@Reza_Ameri-Archived wrote:
It is about Exploit and not malware, uploading photo which I mentioned earlier is concern would might leads to 0-days vulnerability.
Picture containing malicious code is a malware file on its own.