- From: Devdatta Akhawe <dev.akhawe@gmail.com>
- Date: Thu, 27 Mar 2014 09:25:25 +0530
- To: Mike West <mkwst@google.com>
- Cc: Jake Archibald <jakearchibald@google.com>, Anne van Kesteren <annevk@annevk.nl>, WebAppSec WG <public-webappsec@w3.org>, Alec Flett <alecflett@google.com>
> Does that match your thinking, Dev? kinda. I was hoping for something stronger: the absence of child-src would not allow a SW. Or heck, even require an explicit "sw-src" or something. But, this would go against the grain of the remaining CSP directives so your suggestion makes sense. cheers Dev
Received on Thursday, 27 March 2014 03:56:13 UTC