Re: defineProperty is a blacklist

On 15 February 2011 07:18, <> wrote:

> I wish that JS Workers were completely isolated, and with no XHR, it would
> be a nice feature (maybe as an extra argument marking the code as
> untrusted).
> Anyway, what about a JS Worker triggered from a sandboxed iframe?

Would a sandboxed iframe allow same origin XHR urls? You'd need to stop that
but even so the point is that defineProperty should be able to disable
properties of an object that you know nothing about or that can change in

Received on Tuesday, 15 February 2011 08:53:45 UTC