Weekly github digest (FedID WG topics of interest) from W3C Webmaster via GitHub API on 2025-02-10 (public-fedid-wg@w3.org from February 2025)

From: W3C Webmaster via GitHub API <sysbot+gh@w3.org>
Date: Mon, 10 Feb 2025 17:01:13 +0000
To: public-fedid-wg@w3.org
Message-Id: <E1thX9l-00F5a9-18@janus.w3.internal>
Issues
------
* w3c-fedid/FedCM (+3/-2/💬29)
  3 issues created:
  - If an RP page has an XSS risk, how can we avoid token leakage in the FedCM login process? (by Yekongs)
    https://github.com/w3c-fedid/FedCM/issues/698 
  - login_url not dokumented in Section 3.2 (by togamid)
    https://github.com/w3c-fedid/FedCM/issues/697 
  - Browser as an IdP (by EAzari)
    https://github.com/w3c-fedid/FedCM/issues/695 

  10 issues received 29 new comments:
  - #698 If an RP page has an XSS risk, how can we avoid token leakage in the FedCM login process? (8 by Yekongs, johannhof, wparad)
    https://github.com/w3c-fedid/FedCM/issues/698 
  - #696 Algorithm [=attempt to disconnect=] uses optional parameter as required (2 by bvandersloot-mozilla, cbiesinger)
    https://github.com/w3c-fedid/FedCM/issues/696 
  - #695 Browser as an IdP (8 by EAzari, aaronpk, samuelgoto)
    https://github.com/w3c-fedid/FedCM/issues/695 
  - #685 Security considerations should be consistently organised by security risk? (1 by philsmart)
    https://github.com/w3c-fedid/FedCM/issues/685 
  - #682 `Get Title` doesn't have language or direction metadata (2 by hlflanagan, npm1)
    https://github.com/w3c-fedid/FedCM/issues/682 [i18n-needs-resolution] [agenda+] 
  - #681 Allow for language negotiation or localization of privacy policy and TOS? (1 by hlflanagan)
    https://github.com/w3c-fedid/FedCM/issues/681 [i18n-needs-resolution] [agenda+] 
  - #680 Fields `name` and `given_name` have unclear usage (1 by hlflanagan)
    https://github.com/w3c-fedid/FedCM/issues/680 [i18n-needs-resolution] [agenda+] 
  - #679 `IdentityProviderBranding` field `name` should provide lang and direction (1 by philsmart)
    https://github.com/w3c-fedid/FedCM/issues/679 [i18n-needs-resolution] [agenda+] 
  - #652 Horizontal Review preparation (1 by philsmart)
    https://github.com/w3c-fedid/FedCM/issues/652 [agenda+] 
  - #317 concerns about email in Accounts List (4 by TallTed, ekovac, gffletch, hlflanagan)
    https://github.com/w3c-fedid/FedCM/issues/317 [agenda+] [mozilla] [okta] [FPWD] 

  2 issues closed:
  - Browser as an IdP https://github.com/w3c-fedid/FedCM/issues/695 
  - Security considerations should be consistently organised by security risk? https://github.com/w3c-fedid/FedCM/issues/685 

* w3c-fedid/delegation (+0/-0/💬4)
  1 issues received 4 new comments:
  - #3 Pseudonymous Credentials (4 by SamuelSchlesinger, kdenhartog)
    https://github.com/w3c-fedid/delegation/issues/3 [agenda+] 

* fedidcg/LightweightFedCM (+0/-1/💬5)
  2 issues received 5 new comments:
  - #56 Remove account information from returned IdentityCredential (4 by ekovac, npm1, samuelgoto)
    https://github.com/fedidcg/LightweightFedCM/issues/56 
  - #47 Is `effectiveQueryURL` necessary? (1 by ekovac)
    https://github.com/fedidcg/LightweightFedCM/issues/47 

  1 issues closed:
  - Is `effectiveQueryURL` necessary? https://github.com/fedidcg/LightweightFedCM/issues/47 



Pull requests
-------------
* w3c-fedid/FedCM (+0/-0/💬6)
  3 pull requests received 6 new comments:
  - #692 Rewrite security section (2 by TallTed, simoneonofri)
    https://github.com/w3c-fedid/FedCM/pull/692 
  - #686 Add single-get multi IDP support for passive mode (1 by bvandersloot-mozilla)
    https://github.com/w3c-fedid/FedCM/pull/686 
  - #678 Specify "Use another account". (3 by bvandersloot-mozilla, cbiesinger)
    https://github.com/w3c-fedid/FedCM/pull/678 [agenda+] 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c-fedid/FedCM
* https://github.com/w3c-fedid/proposals
* https://github.com/w3c-fedid/login-status
* https://github.com/w3c-fedid/idp-registration
* https://github.com/w3c-fedid/multi-idp
* https://github.com/w3c-fedid/custom-requests
* https://github.com/w3c-fedid/active-mode
* https://github.com/w3c-fedid/delegation
* https://github.com/fedidcg/LightweightFedCM
* https://github.com/fedidcg/proposals
* https://github.com/WICG/digital-credentials
* https://github.com/privacycg/is-logged-in


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Monday, 10 February 2025 17:01:14 UTC