public-webappsec@w3.org from December 2012 by subject

[Bug 20205] New: iOS 6

• bugzilla@jessica.w3.org (Monday, 3 December)

[webappsec] ACTION REQUIRED: Call for Consensus on new WebAppSec WG Charter

• Hill, Brad (Monday, 3 December)
• Fred Andrews (Saturday, 1 December)

[webappsec] Call for Consensus: CSP 1.1 to FPWD

• =JeffH (Monday, 3 December)

[webappsec] Draft agenda for tomorrow's teleconference

• Hill, Brad (Tuesday, 18 December)

[webappsec] new minutes posted

• Hill, Brad (Tuesday, 4 December)

[webappsec] updated draft SVG: simple CORS request

• Odin Hørthe Omdal (Thursday, 20 December)
• =JeffH (Wednesday, 19 December)

A11y for Web App Sec Anti clickjacking spec

• Hill, Brad (Wednesday, 5 December)
• Léonie Watson (Wednesday, 5 December)

Agenda for 2012-12-4 Teleconference

• Tobias Gondrom (Wednesday, 5 December)
• Jacob Rossi (Wednesday, 5 December)
• Eric Rescorla (Tuesday, 4 December)

Call for Exclusions: Content Security Policy 1.1

• Ian Jacobs (Thursday, 13 December)

Comment on Content Security Policy 1.1, Draft of Dec 12 2012

• Tanvi Vyas (Tuesday, 18 December)
• Mike West (Tuesday, 18 December)
• Florian Lasinger (Wednesday, 12 December)

Comment on WD-UISafety-20121120

• Giorgio Maone (Tuesday, 18 December)
• Kimmo.A.Puranen@nokia.com (Tuesday, 4 December)

Content-Security-Policy and dynamically added meta elements

• Daniel Veditz (Sunday, 30 December)
• Mike West (Saturday, 29 December)
• Yoav Weiss (Friday, 28 December)

CSP and inline styles

• Yoav Weiss (Sunday, 30 December)
• Mike West (Saturday, 29 December)
• Boris Zbarsky (Saturday, 29 December)
• Yoav Weiss (Friday, 28 December)
• Boris Zbarsky (Friday, 28 December)
• Yoav Weiss (Friday, 28 December)

CSP ed draft broken fragments

• Mike West (Tuesday, 18 December)
• Carine Bournez (Thursday, 13 December)

CSP violations introduced by Addons / Extensions

• Eduardo' Vela (Wednesday, 19 December)
• Eduardo' Vela (Wednesday, 19 December)
• Hill, Brad (Wednesday, 19 December)

CSP, unsafe-eval and crypto.generateCRMFRequest

• Hill, Brad (Friday, 28 December)
• Ian Melven (Friday, 28 December)

email threads wrt comments on Cross-Origin Resource Sharing (CORS)

• =JeffH (Thursday, 20 December)
• Hill, Brad (Tuesday, 18 December)

Firefox17 and CSP - inline broken?

• sec_ext (Thursday, 6 December)
• sec_ext (Thursday, 6 December)

Line numbers in Content Security Policy reports

• Neil Matatall (Wednesday, 19 December)
• Mike West (Wednesday, 19 December)
• Ian Melven (Tuesday, 18 December)
• Boris Zbarsky (Tuesday, 18 December)
• Mike West (Tuesday, 18 December)
• Ian Melven (Tuesday, 18 December)
• Mike West (Tuesday, 18 December)
• Neil Matatall (Friday, 14 December)

Making cross-origin <iframe seamless=""> (partly) usable

• Fred Andrews (Saturday, 1 December)

The return of script-sample?

• neil matatall (Thursday, 6 December)
• Adam Barth (Thursday, 6 December)
• neil matatall (Wednesday, 5 December)

UI Safety Obstruction check and transforms

• Fred Andrews (Wednesday, 5 December)
• Giorgio Maone (Wednesday, 5 December)
• Hill, Brad (Wednesday, 5 December)
• Mountie Lee (Wednesday, 5 December)
• Hill, Brad (Wednesday, 5 December)

webappsec-ISSUE-41 (CSP and malicious extensions): CSP does not protect against malicious extensions

• Web Application Security Working Group Issue Tracker (Wednesday, 19 December)

Last message date: Sunday, 30 December 2012 23:02:17 UTC