- From: Anne van Kesteren <notifications@github.com>
- Date: Tue, 05 Sep 2017 06:59:55 +0000 (UTC)
- To: whatwg/fetch <fetch@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Tuesday, 5 September 2017 07:00:23 UTC
Yeah, it'll need browser bugs. And I suppose it does theoretically increase the attack surface a little bit by doing this, as you'll be able to control more than just `Last-Event-ID` once this is safelisted, but I don't think that's sufficient reason not to do it. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/pull/597#issuecomment-327088550
Received on Tuesday, 5 September 2017 07:00:23 UTC