-
Notifications
You must be signed in to change notification settings - Fork 55
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
WebAppSec reviews #36
Comments
Discussed in London; @domenic and @mnot interested in reviewing. @JeniT to take a look at SRI from the angle of link metadata. Due Oct 21 |
Great. I'm happy to answer any preliminary questions you fine folks have. Otherwise, the WG mailing list is very friendly. :) |
I've given feedback on Mixed Content; looks pretty good, only smallish nits. Will be bringing up the issue of whether relaxing Referer is a good idea privacy/security wise in Referrer. |
Discussed in NYC; splitting out to separate issues for SRI CSP2. |
CSP2: https://w3c.github.io/webappsec/specs/content-security-policy/
Mixed Content: https://w3c.github.io/webappsec/specs/mixedcontent/
Referrer Policy: https://w3c.github.io/webappsec/specs/referrer-policy/
Subresource Integrity: https://w3c.github.io/webappsec/specs/subresourceintegrity/
The text was updated successfully, but these errors were encountered: