flags Identity consistency between browser and cookie jar - Disabled #account-consistency https://www.ghacks.net/2018/09/08/disable-the-sign-out-link-between-chrome-gmail-and-other-google-services/ Extension Content Verification - Enforce strict #extension-content-verification Strict site isolation - Enabled #enable-site-per-process TLS 1.3 - Enabled #tls13-variant Framebusting requires same-origin or a user gesture - Enabled #enable-framebusting-needs-sameorigin-or-usergesture Block tab-unders - Enabled #enable-block-tab-unders Reduce default 'referer' header granularity. - Enabled #reduced-referrer-granularity Block scripts loaded via document.write - Enabled #disallow-doc-written-script-loads Fill passwords on account selection - Enabled #fill-on-account-select Omnibox UI Hide Steady-State URL Scheme and Trivial Subdomains - Disabled #omnibox-ui-hide-steady-state-url-scheme-and-subdomains Warn Before Quitting - Enabled #warn-before-quitting Password export - Disabled #PasswordExport Password import - Disabled #PasswordImport PDF Isolation - Enabled #pdf-isolation Block unsafe downloads over insecure connections - Enabled #disallow-unsafe-http-downloads