Re: [w3ctag/design-reviews] TAG review request of the CSP feature 'unsafe-hashes' (#291)

Oh, actually, I missed the note that says:
> Note: source will be interpreted with the encoding of the page in which it is embedded. See the integration points in ยง4.2 Integration with HTML for more detail.

...which isn't normative, and which also seems pretty hard to implement since it requires undoing the character encoding conversion into the character encoding the implementation is using (generally UTF-16LE, UTF-16BE, or UTF-8).

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3ctag/design-reviews/issues/291#issuecomment-405629463

Received on Tuesday, 17 July 2018 15:44:57 UTC