- From: Anne van Kesteren <notifications@github.com>
- Date: Fri, 13 May 2016 02:40:59 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
- Cc:
Received on Friday, 13 May 2016 09:41:26 UTC
Cache probing would only be possible same-origin since this feature is restricted to same-origin. It might make it slightly easier if there was an XSS exploit to figure out capability URLs perhaps, but that still seems rather hard and with an XSS exploit you likely have access to sensitive information anyway. --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/pull/295#issuecomment-218998049
Received on Friday, 13 May 2016 09:41:26 UTC