[csswg-drafts] Security/Privacy considerations of css-contain misuse? from Chris Lilley via GitHub on 2017-05-15 (public-css-archive@w3.org from May 2017)

From: Chris Lilley via GitHub <sysbot+gh@w3.org>
Date: Mon, 15 May 2017 17:23:43 +0000
To: public-css-archive@w3.org
Message-ID: <issues.opened-228785311-1494869021-sysbot+gh@w3.org>

svgeesus has just created a new issue for https://github.com/w3c/csswg-drafts:

== Security/Privacy considerations of css-contain misuse? ==
>From Ralph Swick, on the `css-contain`  CR transition call: 
>        Security considerations should include something about risks and counter-measures if a bad actor misuses these new features; e.g. to alter (and misrepresent) what is rendered to the user.

>    Would it be appropriate to have some test cases that misuse the features and test what the implementation does in those situations?



Please view or discuss this issue at https://github.com/w3c/csswg-drafts/issues/1376 using your GitHub account

Received on Monday, 15 May 2017 17:23:49 UTC