- From: jvanbec <notifications@github.com>
- Date: Sun, 19 Feb 2017 10:07:24 -0800
- To: w3c/ServiceWorker <ServiceWorker@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Sunday, 19 February 2017 18:07:59 UTC
He could indeed compute the hash, but I don't see how that could be an attack vector. It's not that the hash is supposed to be hidden. Can you explain what he could do with the hash and how that could possibly tamper the requested resource? -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3c/ServiceWorker/issues/940#issuecomment-280936410
Received on Sunday, 19 February 2017 18:07:59 UTC