W3C home > Mailing lists > Public > public-webappsec@w3.org > August 2012

Re: Advice about unprefixing Content-Security-Policy in WebKit

From: Tom Ritter <tom@ritter.vg>
Date: Tue, 28 Aug 2012 20:20:56 -0400
Message-ID: <CA+cU71mtui3Aw2GLHk8A3D3YR_30KrU6w1RE6NAU-NAOTh5Wuw@mail.gmail.com>
To: Adam Barth <w3c@adambarth.com>
Cc: public-webappsec@w3.org, Mike West <mkwst@chromium.org>
I still think the solution to this issue is adding a mandatory v=1.1
parameter to CSP 1.1.  It will be unambiguous (the lack of it will
identify 1.0), and it'll allow backwards-incompatible changes to 1.1
and future revisions.  And it's not terribly long.

Received on Wednesday, 29 August 2012 00:21:45 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:28 UTC