Re: [csswg-drafts] [css-values] Security concerns regarding attr() (#5092) from Oriol Brufau via GitHub on 2020-05-20 (public-css-archive@w3.org from May 2020)

From: Oriol Brufau via GitHub <sysbot+gh@w3.org>
Date: Wed, 20 May 2020 16:58:03 +0000
To: public-css-archive@w3.org
Message-ID: <issue_comment.created-631600429-1589993882-sysbot+gh@w3.org>

@Crissov It's the attribute in the current DOM, which can come from original HTML source or set in JS. But e.g. if you change the [`value` IDL attribute](https://html.spec.whatwg.org/multipage/input.html#dom-input-value) of an `<input>` element, the [`value` DOM attribute](https://html.spec.whatwg.org/multipage/input.html#attr-input-value) will not reflect that change (it would for the [`defaultValue` IDL attribute](https://html.spec.whatwg.org/multipage/input.html#dom-input-defaultvalue)).

-- 
GitHub Notification of comment by Loirooriol
Please view or discuss this issue at https://github.com/w3c/csswg-drafts/issues/5092#issuecomment-631600429 using your GitHub account

Received on Wednesday, 20 May 2020 16:58:05 UTC