- From: Valentin Gosu <notifications@github.com>
- Date: Mon, 07 Mar 2016 07:34:54 -0800
- To: whatwg/url <url@noreply.github.com>
Received on Monday, 7 March 2016 15:35:38 UTC
Yes, after bug 241788 we strip \r\n\t from the URL parser's input. If the checks are done on a URL object, not on the input string, this shouldn't make things more unsafe. --- Reply to this email directly or view it on GitHub: https://github.com/whatwg/url/issues/101#issuecomment-193302022
Received on Monday, 7 March 2016 15:35:38 UTC