Re: CSP violations introduced by Addons / Extensions from Eduardo' Vela on 2012-12-19 (public-webappsec@w3.org from December 2012)

From: Eduardo' Vela <evn@google.com>
Date: Tue, 18 Dec 2012 19:08:23 -0600
To: "Hill, Brad" <bhill@paypal-inc.com>
Cc: Mike West <mkwst@google.com>, Ingo Chao <ichaocssd@googlemail.com>, Dan Veditz <dveditz@mozilla.com>, "public-webappsec@w3.org" <public-webappsec@w3.org>
Message-ID: <CAFswPa_vUCSXt=M-CrOZCjNbo4tGZ-zJpAS_OZN2W4Rou7gXPA@mail.gmail.com>

Huh? I thought the result was that behavior generated by extensions won't
be sent at all. Which means the issue at hand (SPAM from
extension-initiated violations) was addressed (it's even better than what I
proposed).

Received on Wednesday, 19 December 2012 01:09:10 UTC