- From: Mike West <notifications@github.com>
- Date: Mon, 22 May 2017 11:25:12 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Monday, 22 May 2017 18:25:47 UTC
I was only planning to block `http` and `https` URLs. If it turns out that we can block unencoded `<` in `data:` as well, I wouldn't have a problem doing so. If Firefox and IE don't support that syntax, perhaps we can get away with it? I'll look at the data again on that point in particular tomorrow. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/issues/546#issuecomment-303181254
Received on Monday, 22 May 2017 18:25:47 UTC