- From: Luke Warlow <notifications@github.com>
- Date: Thu, 14 Mar 2024 07:01:36 -0700
- To: w3c/ServiceWorker <ServiceWorker@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Thursday, 14 March 2024 14:01:40 UTC
This issue is to ask if it would be okay to upstream an IDL change from the trusted types spec. Trusted types are a security mechanism to reduce XSS vulenerabilties, this is achieved via a new API that can allows creation of trusted objects based on policies. Most of the XSS sinks are covered by changing their IDL type to one defined in TT spec which handles all the checks neccessary. The service worker specific change can be seen here: https://w3c.github.io/trusted-types/dist/spec/#sw-integration -- Reply to this email directly or view it on GitHub: https://github.com/w3c/ServiceWorker/issues/1710 You are receiving this because you are subscribed to this thread. Message ID: <w3c/ServiceWorker/issues/1710@github.com>
Received on Thursday, 14 March 2024 14:01:40 UTC