Re: [csswg-drafts] [filter-effects-1] Document Clickjacking Attacks (#13846) from Tab Atkins Jr. via GitHub on 2026-05-07 (public-css-archive@w3.org from May 2026)

From: Tab Atkins Jr. via GitHub <noreply@w3.org>
Date: Thu, 07 May 2026 22:17:21 +0000
To: public-css-archive@w3.org
Message-ID: <issue_comment.created-4401584513-1778192238-noreply@w3.org>

Yeah, there's no good reason to disallow filters on same-origin iframes. A same-origin iframe is not remotely a security boundary.

-- 
GitHub Notification of comment by tabatkins
Please view or discuss this issue at https://github.com/w3c/csswg-drafts/pull/13846#issuecomment-4401584513 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Thursday, 7 May 2026 22:17:22 UTC