- From: Alan Karp <alanhkarp@gmail.com>
- Date: Tue, 27 Jan 2026 16:15:20 -0800
- To: meetings@w3c-ccg.org
- Cc: public-credentials@w3.org
Received on Wednesday, 28 January 2026 00:15:35 UTC
That's a pretty good summary, but it contains an important mistake. It says, - *Confused Deputy Vulnerability:* A widespread issue where a service incorrectly uses another party's permissions. that's backwards. The definition should be - *Confused Deputy Vulnerability:* A widespread issue where a service incorrectly uses its own permissions on a resource designated by somebody else. -------------- Alan Karp >
Received on Wednesday, 28 January 2026 00:15:35 UTC