from October 2012 by subject

[Bug 19315] New: Last-Event-ID header should be a simple header

[webappsec] CORS bug 19315

[webappsec] DRAFT TPAC 2012 agenda

[webappsec] Teleconference agenda for WebAppSec WG teleconference, Oct 23

[webappsec] Today's call CANCELLED

[webappsec] updated draft SVG: simple CORS request

Advice about unprefixing Content-Security-Policy in WebKit

CSP 1.0: Are UAs permitted to implement reporting as opt-in?

CSP 1.1: Paths in source list definitions.

CSP and <base> Tag Injection + Suggestion for New CSP Directive "base-src" in CSP 1.1

CSP and inline styles

CSP violations introduced by Addons / Extensions

Fwd: When is the CORS Candidate Recommendation going to be published? [Was: Re: Cancelled: May 22 Telecon]

Granularity of CSP

Pub request: FPWD of User Interface Safety Directives for CSP

Report-uri same-origin restrictions?

Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky

Trigger a DOM event/error when a CSP violation happens.

Last message date: Tuesday, 30 October 2012 10:42:23 UTC