It’s weird to me that you would click a link and without your consent JS code can be downloaded from wherever and run on your computer.

NoScript is always on for me (on my personal PC). Sites that don’t load at all are probably not worth visiting.

https://piefed.social/ is 99% functional with noscript, if you’re into that. I have JS disabled while posting this comment.

I first gave NoScript a spin sometime in the mid-2010s. It was an adjustment, to say the least. But once you get used to temporarily allowing a new target domain as a matter of course, holy hell does the whole game come into specific relief.

The Washington Post, for example – which I was a paid subscriber to until it shit the bed – wanted JS from some 25 domains (many of which were Amazon ad related). I also have NoScript on Firefox on my Pixel.

Firefox, uBO and NoScript are the floor for passable internet hygiene to me.