W3C home > Mailing lists > Public > public-webappsec@w3.org > December 2014

Re: [SRI] Towards v1 - do we need error reporting?

From: Ben Toews <btoews@github.com>
Date: Wed, 10 Dec 2014 11:38:22 -0700
Message-ID: <CAE=pOyG50rATL7bPx2DNS_Bs+2dxFDe4ZfU4O7VG+GiiwywqVQ@mail.gmail.com>
To: Frederik Braun <fbraun@mozilla.com>
Cc: "public-webappsec@w3.org" <public-webappsec@w3.org>
I think error reporting would be nice. Otherwise it would be hard to detect
if the resource host decided to return difference content based on
user-agent or something weird like that.

On Wed, Dec 10, 2014 at 10:41 AM, Frederik Braun <fbraun@mozilla.com> wrote:

> I am leaning towards taking the current state and calling it a v1 around
> January (see other email: I have started another thread about
> noncanonical-src and fallbacks just before this one)
> But we are not sure whether that should include error reporting (in a
> similar way that CSP does it).
> So, the question is: What do web developers want?
Received on Wednesday, 10 December 2014 18:39:09 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:43 UTC