Re: [whatwg/fetch] Restrict allowed JavaScript MIME types (#870)

> Other ~25%

That numbers is incredibly high. Sadly you don't seem to count `application/json`? Would this also include no Content-Type? 

Would you assume that breaking cross-origin scripts would usually be less of a problem, assuming that  a lot of those are tracking scripts?

> We might just be measuring different things. It looks like Mozilla's metrics use the number of scripts loaded as the denominator, while Chrome is measuring the number of pages on which any script had the given MIME type?

Yes correct, this counts every script load. Actually this number also includes ServiceWorker, Worker etc., but those numbers are so small compared to normal `<script>` loads that they are probably insignificant. We could add more counters later.

I am still surprised that the difference seems so high, but I don't have a good intuition on how those two measurements compare.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/whatwg/fetch/issues/870#issuecomment-461798428

Received on Friday, 8 February 2019 13:13:34 UTC