- From: Tab Atkins Jr. via GitHub <sysbot+gh@w3.org>
- Date: Fri, 17 Jun 2022 22:23:00 +0000
- To: public-css-archive@w3.org
Yes, because it's the *site* changing things. It's fine if the *user* communicates with arbitrary sites, as they can already do that by *visiting* the site. What we don't want to allow is sites to exfiltrate data to, say, ad exchanges, particularly when we're exploring things like [fenced frames](https://developer.chrome.com/en/docs/privacy-sandbox/fenced-frame/) to close out the few bits of cross-origin communication left. -- GitHub Notification of comment by tabatkins Please view or discuss this issue at https://github.com/w3c/csswg-drafts/issues/6517#issuecomment-1159276822 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Friday, 17 June 2022 22:23:02 UTC