- From: Mike West <notifications@github.com>
- Date: Mon, 14 May 2018 23:40:35 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Tuesday, 15 May 2018 06:40:59 UTC
After talking with @arturjanc and a few other folks at Google, I've tried to condense this discussion down into a short explainer that punts on the origin question (we'll do some research on the side and come back to it), and adds @dveditz's `initiator`/`destination` suggestion, as well as other random bits and pieces that Google's security team could use to address various forms of cross-site leakage. I'd appreciate feedback on https://github.com/mikewest/sec-metadata. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/issues/700#issuecomment-389059689
Received on Tuesday, 15 May 2018 06:40:59 UTC