W3C home > Mailing lists > Public > public-css-archive@w3.org > May 2017

Re: [csswg-drafts] [css-contain] Security/Privacy considerations of css-contain misuse?

From: Tab Atkins Jr. via GitHub <sysbot+gh@w3.org>
Date: Mon, 15 May 2017 18:32:07 +0000
To: public-css-archive@w3.org
Message-ID: <issue_comment.created-301563554-1494873125-sysbot+gh@w3.org>
This applies to *every single* CSS draft; all of them can be "misused" to alter/misrepresent what is rendered to the user (that is, in fact, precisely what CSS is defined to do ^_^).

Contain doesn't do anything special in this regard. If this is a legit criticism we must answer, then it should be added to the CSSWG boilerplate, not manually added to every spec.

-- 
GitHub Notification of comment by tabatkins
Please view or discuss this issue at https://github.com/w3c/csswg-drafts/issues/1376#issuecomment-301563554 using your GitHub account
Received on Monday, 15 May 2017 18:32:13 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 10:12:53 UTC