- From: Martin Thomson <mt@lowentropy.net>
- Date: Mon, 01 Feb 2021 16:58:46 +1100
- To: ietf-http-wg@w3.org
This is again very good, though maybe not *quite* as good as -semantics. I found some of the language dealing with security to be a little less clear than other text. I've opened a couple of issues. The only thing that warrants mention here is that the draft seems to rely on having an implicit value for host. This is pretty dangerous if true, but it is also not entirely consistent throughout: https://github.com/httpwg/http-core/issues/722
Received on Monday, 1 February 2021 05:59:20 UTC