Weekly github digest (WebAppSec specs) from W3C Webmaster via GitHub API on 2017-12-18 (public-webappsec@w3.org from December 2017)

From: W3C Webmaster via GitHub API <sysbot+gh@w3.org>
Date: Mon, 18 Dec 2017 17:00:13 +0000
To: public-webappsec@w3.org
Message-Id: <E1eQylx-0003td-Cf@uranus.w3.org>

Issues
------
* w3c/webappsec-subresource-integrity (+0/-0/💬1)
  1 issues received 1 new comments:
  - #21 Consider integrity enforcement of iframe (1 by EGreg)
    https://github.com/w3c/webappsec-subresource-integrity/issues/21

* w3c/webappsec-csp (+1/-3/💬5)
  1 issues created:
  - WPT tests tracker (by andypaicu)
    https://github.com/w3c/webappsec-csp/issues/276

  4 issues received 5 new comments:
  - #275 Wrap up CSP 3, Move to CSP 4  (2 by shhnjk, mikewest)
    https://github.com/w3c/webappsec-csp/issues/275
  - #8 CSP: form-action and redirects (1 by JurRutten)
    https://github.com/w3c/webappsec-csp/issues/8
  - #266 SecurityPolicyViolationEvent needs more USVString (1 by andypaicu)
    https://github.com/w3c/webappsec-csp/issues/266
  - #268 Line and column number types (1 by andypaicu)
    https://github.com/w3c/webappsec-csp/issues/268

  3 issues closed:
  - SecurityPolicyViolationEventInit doesn't have default values for the properties, nor has marked them required https://github.com/w3c/webappsec-csp/issues/265
  - SecurityPolicyViolationEvent's sourceFile seems wrong https://github.com/w3c/webappsec-csp/issues/267
  - The “report a violation” algorithm assumes report-uri contains a single URL? https://github.com/w3c/webappsec-csp/issues/270



Pull requests
-------------
* w3c/webappsec-csp (+0/-1/💬0)
  1 pull requests merged:
  - IDL amendments and small misc issues.
    https://github.com/w3c/webappsec-csp/pull/271

* w3c/webappsec-clear-site-data (+1/-1/💬1)
  1 pull requests submitted:
  - Performance demo added. (by msramek)
    https://github.com/w3c/webappsec-clear-site-data/pull/45

  1 pull requests received 1 new comments:
  - #45 Performance demo added. (1 by msramek)
    https://github.com/w3c/webappsec-clear-site-data/pull/45

  1 pull requests merged:
  - Performance demo added.
    https://github.com/w3c/webappsec-clear-site-data/pull/45


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c/webappsec
* https://github.com/w3c/webappsec-subresource-integrity
* https://github.com/w3c/webappsec-csp
* https://github.com/w3c/webappsec-mixed-content
* https://github.com/w3c/webappsec-upgrade-insecure-requests
* https://github.com/w3c/webappsec-credential-management
* https://github.com/w3c/permissions
* https://github.com/w3c/webappsec-referrer-policy
* https://github.com/w3c/webappsec-secure-contexts
* https://github.com/w3c/webappsec-clear-site-data
* https://github.com/w3c/webappsec-cowl
* https://github.com/w3c/webappsec-epr
* https://github.com/w3c/webappsec-suborigins

Received on Monday, 18 December 2017 17:00:22 UTC