- From: Marijn Kruisselbrink <notifications@github.com>
- Date: Thu, 14 Apr 2016 14:51:58 -0700
- To: slightlyoff/ServiceWorker <ServiceWorker@noreply.github.com>
Received on Thursday, 14 April 2016 21:52:26 UTC
I'm fine with that decision, but at the F2F the conclusion was that it probably would be a good idea to run this by some security people so we don't run into any surprises when/if they later discover that we broke some guarantees around no-credentials CORS fetches. @metromoxie @mikewest: either of you want to weigh in on this? We're trying to figure out what to do about no-credentials CORS requests in the context of foreign fetch. --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/slightlyoff/ServiceWorker/issues/878#issuecomment-210168168
Received on Thursday, 14 April 2016 21:52:26 UTC