Re: [csswg-drafts] [css-fonts][css-fonts-4] CSS Fonts 4 needs a proper Security and Privacy Considerations section (#4697) from Tab Atkins Jr. via GitHub on 2020-02-20 (public-css-archive@w3.org from February 2020)

From: Tab Atkins Jr. via GitHub <sysbot+gh@w3.org>
Date: Thu, 20 Feb 2020 22:25:33 +0000
To: public-css-archive@w3.org
Message-ID: <issue_comment.created-589382440-1582237532-sysbot+gh@w3.org>

I guess this relies on CSS injection to actually be a threat? Since otherwise the page could just observe the actual text. Or I guess it allows the page to attack in the absence of JS.

-- 
GitHub Notification of comment by tabatkins
Please view or discuss this issue at https://github.com/w3c/csswg-drafts/issues/4697#issuecomment-589382440 using your GitHub account

Received on Thursday, 20 February 2020 22:25:35 UTC