from June 2011 by subject

CSP and web analytics

CSP: meta-refresh directive?

CSP: non-TLS scheme restrictions must allow TLS-enabled schemes automatically

CSP: setAttribute allows eval from string

Feature Request Access Containers

heads-up: webappsec charter (basically) ready to ship

Interaction with Workers (was Re: setTimeout error handling)

Minutes, report? Login to wiki?

Missing from the report

New proposed charter and chairs for WebAppSec WG

Proposed change: "xhr-src" to "connect"

Publishing From-Origin Proposal as FPWD

Req for feedback? Add attribute to elements to defeat clickjacking

Request for feedback: DOMCrypt API proposal


script-src requirements

scrub-referrer directive?

Smart Card support. Re: Request for feedback: DOMCrypt API proposal

XSLT style sheets

Last message date: Thursday, 30 June 2011 16:32:19 UTC