- From: Yoav Weiss <notifications@github.com>
- Date: Fri, 24 Aug 2018 00:45:30 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Friday, 24 August 2018 07:45:51 UTC
OK, so we're talking about different threat models. Is the threat model user-generated headers? Would limiting the headers' values similarly to #736 help? That seems doable without sacrificing any of the use-cases (and regardless of FP). -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/issues/800#issuecomment-415680179
Received on Friday, 24 August 2018 07:45:51 UTC