- From: Daniel Appelquist <notifications@github.com>
- Date: Tue, 16 May 2023 00:14:34 -0700
- To: w3ctag/design-reviews <design-reviews@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Tuesday, 16 May 2023 07:14:40 UTC
Hi - Thanks for the update on the explainer. One thing that is still blocking this from our perspective is that the Spec is not self-contained so it's difficult to understand what we're reviewing - especially the privacy & security considerations. In the explainer it says "User agents are recommended to perform security checks on files moved within the local file system" but that isn't in the linked PR. And one issue we're concerned about is the strength of this "recommendation" and whether it's appropriate to the power of this API - especially when it comes to security. If there's a self-contained spec, can you please amend the review to point to that? -- Reply to this email directly or view it on GitHub: https://github.com/w3ctag/design-reviews/issues/805#issuecomment-1549120074 You are receiving this because you are subscribed to this thread. Message ID: <w3ctag/design-reviews/issues/805/1549120074@github.com>
Received on Tuesday, 16 May 2023 07:14:40 UTC