- From: François Daoust via GitHub <sysbot+gh@w3.org>
- Date: Wed, 21 Sep 2022 10:35:04 +0000
- To: public-web-nfc@w3.org
tidoust has just submitted a new pull request for https://github.com/w3c/web-nfc: == Drop link to potentially malicious example.com web site == It is a very good idea to illustrate the malicious use case with a concrete example. It does not seem to be such a good idea to link to an external web site which could exist in theory, and could well be malicious if it existed. For consistency, this update also drops the link to the legitimate example.com URL although this link could remain as there are strong guarantees that this site will always exist for illustrative examples. To illustrate what happens more clearly, it could perhaps be worthwhile to represent the Punnycode representation of the potentially malicious URL: `https://xn--exmple-4nf.com/`. Happy to update the PR with that in mind if you think that's useful. See https://github.com/w3c/web-nfc/pull/649 -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Wednesday, 21 September 2022 10:35:05 UTC