- From: Mu Lei via GitHub <sysbot+gh@w3.org>
- Date: Fri, 17 Sep 2021 16:13:01 +0000
- To: public-fxtf-archive@w3.org
NalaGinrut has just created a new issue for https://github.com/w3c/fxtf-drafts: == [css-masking-1] The privacy review and suggestion == Hi folks! First, thanks for the hard work! This is a privacy review from PING. The self-review of css-masking-1 about privacy is good. However, we still have a little concern, here's the suggested text that should be added into the `Privacy and Security Considerations` section: > While CSS capabilities like those defined in CSS Masking Module Level 1 can be used to hide content from a site visitor, Web developers should not use these features to hide sensitive content from users or page scripts. Content that is hidden from a user's display via CSS can still be accessed and read from page scripts or form submissions. Web developers should treat the capabilities in this spec (as with all CSS specs) as cosmetic changes only, and not imposing or defending a privacy boundary. It's appreciated if you can add the text. Thanks! The related discussion of PING is here https://github.com/w3cping/privacy-request/issues/50 Please view or discuss this issue at https://github.com/w3c/fxtf-drafts/issues/437 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Friday, 17 September 2021 16:13:03 UTC