W3C home > Mailing lists > Public > public-webappsec@w3.org > December 2014

Re: [webappsec] Clarifying how CSP sandboxing applies to Workers, ServiceWorkers

From: Anne van Kesteren <annevk@annevk.nl>
Date: Wed, 3 Dec 2014 15:47:13 +0100
Message-ID: <CADnb78g7n6TGiGJH61MLXEqTDohSeod1Y8nyOTHZEq7Dz0L6pw@mail.gmail.com>
To: Brad Hill <hillbrad@fb.com>
Cc: "public-webappsec@w3.org" <public-webappsec@w3.org>
On Mon, Dec 1, 2014 at 10:42 PM, Brad Hill <hillbrad@fb.com> wrote:
> I'd like to propose adding the following normative note to the sandbox
> directive In CSP.

That's an oxymoron (normative note). If we want this behavior let's
decide on that and add it. Adding it optionally doesn't work in a
race-to-the-bottom environment.

Received on Wednesday, 3 December 2014 14:47:41 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:43 UTC