- From: Anne van Kesteren <notifications@github.com>
- Date: Thu, 16 Mar 2017 01:07:21 -0700
- To: w3c/FileAPI <FileAPI@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Thursday, 16 March 2017 08:07:54 UTC
If we do anything here I think we should put it on Blob objects directly. That way if we eventually manage to migrate away of creating URL references to them to just assigning them to other things, you wouldn't become vulnerable. @mikewest maybe CSP should offer something here as well? -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3c/FileAPI/issues/74#issuecomment-286985073
Received on Thursday, 16 March 2017 08:07:54 UTC