- From: Mike West <notifications@github.com>
- Date: Tue, 22 Aug 2017 06:28:38 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Tuesday, 22 August 2017 13:28:59 UTC
mikewest commented on this pull request. > @@ -813,23 +802,28 @@ the empty string, "<code>worker</code>", or "<code>xslt</code>". Unless stated otherwise it is the empty string. +<p>A <dfn for=export>script-like destination</dfn> is "<code>script</code>", +"<code>serviceworker</code>", "<code>sharedworker</code>", or "<code>worker</code>". > If we made "xslt" part of this, then nosniff would fail. I see. Hrm. Ok. :) > And adding "xslt" to MIME type blocking probably doesn't help either as XSLT already requires a correct MIME type? I'm not familiar enough with the XSLT code in Chrome, so I'm not actually sure it does. But I agree it should. So, yeah. I think you're right. Consider the suggestion dropped. :P -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/pull/582#discussion_r134479526
Received on Tuesday, 22 August 2017 13:28:59 UTC