from August 2013 by subject

[CORS] Understanding the definition of simple headers

[webappsec + webapps] CORS to PR plans

[webappsec] CSP: are blob uri's really just origin='self'?

[webappsec] Proposed Agenda for 13-Aug-2013 WebAppSec WG Teleconference

ACTION-147 RFC script-hash proposal v2

Agenda for 8/27/13 Conference Call

Audio & security


CSP 1.1 and image loading elements/attributes

CSP 1.1: Nonce-source and unsafe-inline

De-duplicating violation reports?

Fwd: [webappsec + webapps] CORS to PR plans

Including the Javascript stack trace in the ContentSecurityPolicy report

Proposed CSRF countermeasure


Supporting base64 in nonce-value

Last message date: Friday, 30 August 2013 22:11:23 UTC