public-webappsec@w3.org from April 2014 by thread

CSP and mixed content Anne van Kesteren (Wednesday, 30 April)

CORS and Caching (in reverse proxies / CDNs) Nils Goroll (Monday, 28 April)

[webappsec] FW: Dan Veditz appointed co-chair of Web Application Security Working Group Hill, Brad (Monday, 28 April)

CSP, Fetch, and frame-ancestors Anne van Kesteren (Thursday, 24 April)

Worker / SharedWorker directive Anne van Kesteren (Thursday, 24 April)

Re: CSP, Fetch, and Service Workers Anne van Kesteren (Wednesday, 23 April)

Canceled: W3C WebAppSec WG Meeting Hill, Brad (Wednesday, 23 April)

webappsec-ISSUE-60 (CSP and META): Injecting META tags can be an interesting bypass technique, possibly [CSP 1.2] Web Application Security Working Group Issue Tracker (Wednesday, 23 April)

webappsec-ISSUE-59 (SVG rules for CSP): Figure out how to use CSP appropriately with SVG modes [CSP 1.1] Web Application Security Working Group Issue Tracker (Wednesday, 23 April)

W3C WebAppSec WG Meeting Hill, Brad (Wednesday, 23 April)

[webappsec] AGENDA: WebAppSec WG Teleconference 23-April-2014 08:00 PDT Brad Hill (Tuesday, 22 April)

CSP no-external-navigation David Saez Padros (Tuesday, 22 April)

CSP, Blob Workers, and Firefox Paul Frazee (Saturday, 19 April)

[CSP] SVG-in-img implementation difference Ted Mielczarek (Thursday, 17 April)

Re: [integrity] What should we hash? Boris Zbarsky (Wednesday, 9 April)

[Integrity] Comments/Questions on Subresource Integrity spec Tanvi Vyas (Wednesday, 9 April)

[webappsec] Agenda for Teleconference, 09-April-2014 08:00 PDT Brad Hill (Tuesday, 8 April)

webappsec-ISSUE-58 (Late binding of CSP): Late binding of CSP policies [CSP 1.1] Web Application Security Working Group Issue Tracker (Tuesday, 8 April)

CSP Bypass Ideas Sandeep Kamble (Monday, 7 April)

CORS and CSRF protection Monsur Hossain (Friday, 4 April)

Last message date: Wednesday, 30 April 2014 16:07:19 UTC