Weekly github digest (FedID WG topics of interest) from W3C Webmaster via GitHub API on 2025-06-30 (public-fedid-wg@w3.org from June 2025)

From: W3C Webmaster via GitHub API <noreply@w3.org>
Date: Mon, 30 Jun 2025 17:01:15 +0000
To: public-fedid-wg@w3.org
Message-Id: <E1uWHsZ-00FHiI-0y@janus.w3.internal>
Issues
------
* w3c-fedid/FedCM (+2/-3/💬10)
  2 issues created:
  - Wrong Web IDL type for URLs in Federated Credential Management API (by dontcallmedom-bot)
    https://github.com/w3c-fedid/FedCM/issues/754 
  - IDP section is non-normative and out of date (by mooreds)
    https://github.com/w3c-fedid/FedCM/issues/753 

  6 issues received 10 new comments:
  - #753 IDP section is non-normative and out of date (1 by mooreds)
    https://github.com/w3c-fedid/FedCM/issues/753 
  - #750 Inconsistency between `getUserInfo` and UI hints from `IdentityProviderAccount` (3 by TallTed, bvandersloot-mozilla, cbiesinger)
    https://github.com/w3c-fedid/FedCM/issues/750 
  - #741 Accessibility review (1 by hlflanagan)
    https://github.com/w3c-fedid/FedCM/issues/741 [agenda+] 
  - #725 Support showing iframe origins in the UI, when they are third-party (3 by bvandersloot-mozilla, hlflanagan, yi-gu)
    https://github.com/w3c-fedid/FedCM/issues/725 [agenda+] 
  - #700 Tracking through IDP with individualized account and client_metadata endpoints (1 by hlflanagan)
    https://github.com/w3c-fedid/FedCM/issues/700 [agenda+] 
  - #471 Should FedCM spec have conformance requirements over IDPs (1 by mooreds)
    https://github.com/w3c-fedid/FedCM/issues/471 

  3 issues closed:
  - Assert in step 7.12 of the Create Identity credential algorithm can fail https://github.com/w3c-fedid/FedCM/issues/734 
  - Users may be confused after showing intent to sign in but the sign-in is failed https://github.com/w3c-fedid/FedCM/issues/488 [chrome] [FPWD] [CR Blocker] 
  - getUserInfo should only reject with exceptions, not throw and reject in different cases https://github.com/w3c-fedid/FedCM/issues/727 

* w3c-fedid/idp-registration (+0/-0/💬10)
  2 issues received 10 new comments:
  - #9 DNS option instead of well-known URI (8 by mooreds, samuelgoto, togamid)
    https://github.com/w3c-fedid/idp-registration/issues/9 
  - #1 Allow IdP registration and RPs to match on a "type" (2 by samuelgoto, togamid)
    https://github.com/w3c-fedid/idp-registration/issues/1 

* WICG/digital-credentials (+7/-3/💬21)
  7 issues created:
  - Define coordinator and client (by marcoscaceres)
    https://github.com/w3c-fedid/digital-credentials/issues/305 
  - Spec should group API section (by marcoscaceres)
    https://github.com/w3c-fedid/digital-credentials/issues/303 
  - mitigations for tracking and fingerprinting using presented or issued credential characteristics (by npdoty)
    https://github.com/w3c-fedid/digital-credentials/issues/302 
  - Establish a common classification of credential types used in this API (by kdenhartog)
    https://github.com/w3c-fedid/digital-credentials/issues/299 
  - Privacy Considerations: Consider incorporating information entropy when discussing linkable information (by johannhof)
    https://github.com/w3c-fedid/digital-credentials/issues/297 
  - proof of authentication (by nadalin)
    https://github.com/w3c-fedid/digital-credentials/issues/296 
  - Privacy Considerations: Possibly distinguish between 3P attested and self attested and identity / non-identity based (by johannhof)
    https://github.com/w3c-fedid/digital-credentials/issues/295 

  10 issues received 21 new comments:
  - #299 Establish a common classification of credential types used in this API (1 by kdenhartog)
    https://github.com/w3c-fedid/digital-credentials/issues/299 
  - #297 Privacy Considerations: Consider incorporating information entropy when discussing linkable information (1 by johannhof)
    https://github.com/w3c-fedid/digital-credentials/issues/297 [privacy-considerations] 
  - #296 proof of authentication (1 by timcappalli)
    https://github.com/w3c-fedid/digital-credentials/issues/296 
  - #295 Privacy Considerations: Possibly distinguish between 3P attested and self attested and identity / non-identity based (1 by kdenhartog)
    https://github.com/w3c-fedid/digital-credentials/issues/295 [privacy-considerations] 
  - #289 note designed-for-purpose alternatives and the risk of crowding out those options (1 by martinthomson)
    https://github.com/w3c-fedid/digital-credentials/issues/289 [privacy-tracker] 
  - #281 User agents that only support authorized verifiers (for government credentials) (2 by johannhof, zoracon)
    https://github.com/w3c-fedid/digital-credentials/issues/281 [privacy-tracker] 
  - #219 Add a means for developers to check protocols allowed by user agents (1 by johannhof)
    https://github.com/w3c-fedid/digital-credentials/issues/219 [spec] [agenda+] 
  - #213 Add ISO/IEC 18013-7 Annex C to protocol registry (3 by marcoscaceres, nadalin)
    https://github.com/w3c-fedid/digital-credentials/issues/213 [registry] 
  - #183 Write privacy considerations (2 by johannhof, npdoty)
    https://github.com/w3c-fedid/digital-credentials/issues/183 [spec] [FPWD Blockers] [agenda+] [privacy-considerations] 
  - #35 [Discuss] This API should address the Jevons Paradox around increased consumption of verifiable credentials and the rise of their abuses (8 by DemiMarie, kdenhartog, timcappalli)
    https://github.com/w3c-fedid/digital-credentials/issues/35 [discussion] [privacy-tracker] 

  3 issues closed:
  - Establish a common classification of credential types used in this API https://github.com/w3c-fedid/digital-credentials/issues/299 
  - Add a means for developers to check protocols allowed by user agents https://github.com/w3c-fedid/digital-credentials/issues/219 [spec] [agenda+] 
  - Explain design choices for this API vs. alternatives https://github.com/w3c-fedid/digital-credentials/issues/275 [privacy-considerations] 



Pull requests
-------------
* w3c-fedid/FedCM (+1/-3/💬2)
  1 pull requests submitted:
  - Document the webdriver command to use another account. (by cbiesinger)
    https://github.com/w3c-fedid/FedCM/pull/752 

  2 pull requests received 2 new comments:
  - #737 Fix spec bugs reported by togamid (1 by hlflanagan)
    https://github.com/w3c-fedid/FedCM/pull/737 [agenda+] 
  - #498 Add API to show error messages from failed token fetches (1 by hlflanagan)
    https://github.com/w3c-fedid/FedCM/pull/498 [agenda+] [chrome] 

  3 pull requests merged:
  - Fix spec bugs reported by togamid
    https://github.com/w3c-fedid/FedCM/pull/737 
  - Add API to show error messages from failed token fetches
    https://github.com/w3c-fedid/FedCM/pull/498 [agenda+] [chrome] 
  - Fix some promise issues in getUserInfo
    https://github.com/w3c-fedid/FedCM/pull/751 

* WICG/digital-credentials (+4/-5/💬13)
  4 pull requests submitted:
  - Define Coordinator and Client (by marcoscaceres)
    https://github.com/w3c-fedid/digital-credentials/pull/306 
  - Editorial: add  API section (by marcoscaceres)
    https://github.com/w3c-fedid/digital-credentials/pull/304 
  - PubRules Validator (by simoneonofri)
    https://github.com/w3c-fedid/digital-credentials/pull/301 [editorial] 
  - HTML Validator (by simoneonofri)
    https://github.com/w3c-fedid/digital-credentials/pull/300 

  7 pull requests received 13 new comments:
  - #301 chore: add Editor IDs (1 by marcoscaceres)
    https://github.com/w3c-fedid/digital-credentials/pull/301 [editorial] 
  - #283 Add initial privacy considerations for fingerprinting and data leakage (2 by johannhof)
    https://github.com/w3c-fedid/digital-credentials/pull/283 [privacy-considerations] 
  - #278 Add design considerations section to privacy considerations (fixes #275) (1 by johannhof)
    https://github.com/w3c-fedid/digital-credentials/pull/278 [privacy-considerations] 
  - #272 Security Considerations: Writing Introduction (1 by marcoscaceres)
    https://github.com/w3c-fedid/digital-credentials/pull/272 [security-tracker] [security-considerations] 
  - #271 Adds additional terminology (2 by hlflanagan, timcappalli)
    https://github.com/w3c-fedid/digital-credentials/pull/271 [agenda+] 
  - #262 Write initial privacy considerations for unnecessary use (3 by johannhof)
    https://github.com/w3c-fedid/digital-credentials/pull/262 [privacy-considerations] 
  - #221 Add userAgentAllowsProtocol static method (3 by hlflanagan, marcoscaceres, timcappalli)
    https://github.com/w3c-fedid/digital-credentials/pull/221 

  5 pull requests merged:
  - Chore: fix HTML Validator issues
    https://github.com/w3c-fedid/digital-credentials/pull/300 [editorial] 
  - chore: add Editor IDs
    https://github.com/w3c-fedid/digital-credentials/pull/301 [editorial] 
  - Write initial privacy considerations for unnecessary use
    https://github.com/w3c-fedid/digital-credentials/pull/262 [privacy-considerations] 
  - Add userAgentAllowsProtocol static method
    https://github.com/w3c-fedid/digital-credentials/pull/221 
  - Add design considerations section to privacy considerations (fixes #275)
    https://github.com/w3c-fedid/digital-credentials/pull/278 [privacy-considerations] 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c-fedid/FedCM
* https://github.com/w3c-fedid/proposals
* https://github.com/w3c-fedid/login-status
* https://github.com/w3c-fedid/idp-registration
* https://github.com/w3c-fedid/multi-idp
* https://github.com/w3c-fedid/custom-requests
* https://github.com/w3c-fedid/active-mode
* https://github.com/w3c-fedid/delegation
* https://github.com/fedidcg/LightweightFedCM
* https://github.com/fedidcg/proposals
* https://github.com/WICG/digital-credentials
* https://github.com/privacycg/is-logged-in


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Monday, 30 June 2025 17:01:16 UTC