- From: Hill, Brad <bhill@paypal-inc.com>
- Date: Tue, 23 Apr 2013 21:11:03 +0000
- To: "public-webappsec@w3.org" <public-webappsec@w3.org>
While writing test assertions I noticed that the spec text for CSP 1.0 does not explicitly include the src attribute of a button element of type image in the list of fetches controlled by the img-src directive. Should we correct this? -Brad
Received on Tuesday, 23 April 2013 21:11:31 UTC