- From: Anne van Kesteren <annevk@annevk.nl>
- Date: Sun, 1 Jun 2014 10:04:08 +0200
- To: WebAppSec WG <public-webappsec@w3.org>
- Cc: Ian Hickson <ian@hixie.ch>
We should note in the specification that sandboxing only has effect when CSP applies to a global environment associated with a browsing context. It wouldn't apply to workers or e.g. a document fetched through XMLHttpRequest. However, we might want to have it apply to workers, maybe we should introduce that? -- http://annevankesteren.nl/
Received on Sunday, 1 June 2014 08:04:36 UTC