public-webappsec@w3.org from October 2014 by thread

[CSP] Implementer differences: window.open Kevin Hill (Friday, 31 October)

• Re: [CSP] Implementer differences: window.open Devdatta Akhawe (Friday, 31 October)

Implementer differences Kevin Hill (Thursday, 30 October)

• Re: Implementer differences Brad Hill (Thursday, 30 October)
  • RE: Implementer differences Kevin Hill (Friday, 31 October)
    • Re: Implementer differences Anne van Kesteren (Friday, 31 October)
      • RE: Implementer differences Kevin Hill (Friday, 31 October)

[MIX] 6.1 May browsing context use powerful features? Anne van Kesteren (Thursday, 30 October)

• Re: [MIX] 6.1 May browsing context use powerful features? Mike West (Thursday, 30 October)
  • Re: [MIX] 6.1 May browsing context use powerful features? Anne van Kesteren (Friday, 31 October)

[MIX] 5.1 Does settings object restrict mixed content? Anne van Kesteren (Thursday, 30 October)

• Re: [MIX] 5.1 Does settings object restrict mixed content? Ian Hickson (Thursday, 30 October)
  • Re: [MIX] 5.1 Does settings object restrict mixed content? Anne van Kesteren (Thursday, 30 October)
    • Re: [MIX] 5.1 Does settings object restrict mixed content? Ian Hickson (Thursday, 30 October)
      • Re: [MIX] 5.1 Does settings object restrict mixed content? Anne van Kesteren (Thursday, 30 October)
        • Re: [MIX] 5.1 Does settings object restrict mixed content? Ian Hickson (Thursday, 30 October)
          • Re: [MIX] 5.1 Does settings object restrict mixed content? Mike West (Thursday, 30 October)
            • Re: [MIX] 5.1 Does settings object restrict mixed content? Mike West (Thursday, 30 October)
            • Re: [MIX] 5.1 Does settings object restrict mixed content? Ian Hickson (Thursday, 30 October)
            • Re: [MIX] 5.1 Does settings object restrict mixed content? Mike West (Friday, 31 October)

[MIX] 4.5 User Controls Anne van Kesteren (Thursday, 30 October)

• Re: [MIX] 4.5 User Controls Mike West (Thursday, 30 October)
  • Re: [MIX] 4.5 User Controls Anne van Kesteren (Thursday, 30 October)
    • Re: [MIX] 4.5 User Controls Brad Hill (Thursday, 30 October)
      • Re: [MIX] 4.5 User Controls Anne van Kesteren (Friday, 31 October)
        • Re: [MIX] 4.5 User Controls Brad Hill (Friday, 31 October)
          • Re: [MIX] 4.5 User Controls Anne van Kesteren (Friday, 31 October)
            • RE: [MIX] 4.5 User Controls Mike O'Neill (Friday, 31 October)

[MIX] Normative statements in 4.1 Resource Fetching Anne van Kesteren (Thursday, 30 October)

• Re: [MIX] Normative statements in 4.1 Resource Fetching Mike West (Thursday, 30 October)
  • Re: [MIX] Normative statements in 4.1 Resource Fetching Anne van Kesteren (Thursday, 30 October)
    • Re: [MIX] Normative statements in 4.1 Resource Fetching Mike West (Thursday, 30 October)

[MIX] Modifications to script APIs Anne van Kesteren (Thursday, 30 October)

• Re: [MIX] Modifications to script APIs Mike West (Thursday, 30 October)
  • Re: [MIX] Modifications to script APIs Anne van Kesteren (Thursday, 30 October)
    • Re: [MIX] Modifications to script APIs Mike West (Thursday, 30 October)
      • Re: [MIX] Modifications to script APIs Anne van Kesteren (Friday, 31 October)
        • Re: [MIX] Modifications to script APIs Anne van Kesteren (Friday, 31 October)

Permission that spans browsing contexts Anne van Kesteren (Thursday, 30 October)

• Re: Permission that spans browsing contexts Mike West (Thursday, 30 October)

CfC: Mixed Content to Last Call? Mike West (Wednesday, 29 October)

• Re: CfC: Mixed Content to Last Call? Anne van Kesteren (Wednesday, 29 October)
  • Re: CfC: Mixed Content to Last Call? Mike West (Thursday, 30 October)
    • Re: CfC: Mixed Content to Last Call? Mike West (Thursday, 30 October)

Minimum viable SRI? Mike West (Wednesday, 29 October)

• Re: Minimum viable SRI? Frederik Braun (Wednesday, 29 October)
  • Re: Minimum viable SRI? Brad Hill (Wednesday, 29 October)

FYI: Starting on CSP Next. Mike West (Wednesday, 29 October)

• Re: FYI: Starting on CSP Next. Anne van Kesteren (Wednesday, 29 October)
  • Re: FYI: Starting on CSP Next. Mike West (Wednesday, 29 October)

[webappsec] do we want a way to hash data: and blob: uris? Brad Hill (Tuesday, 28 October)

[SRI] To trust or not to trust a CDN Frederik Braun (Tuesday, 28 October)

• Re: [SRI] To trust or not to trust a CDN Joel Weinberger (Wednesday, 29 October)
  • Re: [SRI] To trust or not to trust a CDN Brian Smith (Wednesday, 29 October)
    • Re: [SRI] To trust or not to trust a CDN Mike West (Wednesday, 29 October)
      • Re: [SRI] To trust or not to trust a CDN Ben Toews (Wednesday, 29 October)
        • Re: [SRI] To trust or not to trust a CDN Hatter Jiang OWS (Wednesday, 29 October)
          • Re: [SRI] To trust or not to trust a CDN Joel Weinberger (Wednesday, 29 October)
            • Re: [SRI] To trust or not to trust a CDN Sean Snider (Wednesday, 29 October)
            • Re: [SRI] To trust or not to trust a CDN Devdatta Akhawe (Wednesday, 29 October)
            • Re: [SRI] To trust or not to trust a CDN Frederik Braun (Thursday, 30 October)
            • Re: [SRI] To trust or not to trust a CDN Ben Toews (Wednesday, 29 October)
            • Re: [SRI] To trust or not to trust a CDN Frederik Braun (Thursday, 30 October)
            • Re: [SRI] To trust or not to trust a CDN Brian Smith (Friday, 31 October)
            • Re: [SRI] To trust or not to trust a CDN Joel Weinberger (Friday, 31 October)

[webappsec] TPAC agenda changes Brad Hill (Tuesday, 28 October)

[webappsec] F2F at TPAC on hold Brad Hill (Tuesday, 28 October)

• Re: [webappsec] F2F at TPAC on hold Brad Hill (Tuesday, 28 October)

No-context ACTION emails are confusing Anne van Kesteren (Tuesday, 28 October)

• Re: No-context ACTION emails are confusing Brad Hill (Tuesday, 28 October)

webappsec-ISSUE-69 (Overt channel control in CSP): Consider directives to manage postMessage and external navigation of iframes [CSP Next] Web Application Security Working Group Issue Tracker (Tuesday, 28 October)

[webappsec] survey results Brad Hill (Monday, 27 October)

webappsec-ACTION-199: Keep topic of internet/intranet connectivity and https on the w3c radar Web Application Security Working Group Issue Tracker (Monday, 27 October)

webappsec-ACTION-198: Take bookmarklets discussion back to the list Web Application Security Working Group Issue Tracker (Monday, 27 October)

webappsec-ACTION-197: Schedule an ad-hoc at TPAC 2014 (+wseltzer, +plh, +robin, +tbl?) Web Application Security Working Group Issue Tracker (Monday, 27 October)

webappsec-ACTION-196: Remove intranet/internet section from Mixed Content spec Web Application Security Working Group Issue Tracker (Monday, 27 October)

• Re: webappsec-ACTION-196: Remove intranet/internet section from Mixed Content spec Mike West (Monday, 27 October)

webappsec-ACTION-195: Respond to Hatter Jiang on JSONP directives - under consideration for v.Next Web Application Security Working Group Issue Tracker (Monday, 27 October)

webappsec-ACTION-194: Respond to Hatter Jiang on 401 attach Web Application Security Working Group Issue Tracker (Monday, 27 October)

webappsec-ISSUE-68 (401 prompting by subresources): How to manage 401 phishing prompts by subresources Web Application Security Working Group Issue Tracker (Monday, 27 October)

webappsec-ACTION-193: Respond to Brian Smith on referrer-policy Web Application Security Working Group Issue Tracker (Monday, 27 October)

webappsec-ACTION-192: Evaluate control over nesting depth. Web Application Security Working Group Issue Tracker (Monday, 27 October)

webappsec-ACTION-191: Inconsistency in source hash description Web Application Security Working Group Issue Tracker (Monday, 27 October)

webappsec-ACTION-190: Is reflected-xss directive at risk? Web Application Security Working Group Issue Tracker (Monday, 27 October)

[webappsec] TPAC living agenda Brad Hill (Sunday, 26 October)

[CSP] Inconsistency between Source hash introduction and Source hash usage Yagihashi Yu (Friday, 24 October)

• Re: [CSP] Inconsistency between Source hash introduction and Source hash usage Mike West (Monday, 27 October)
  • Re: [CSP] Inconsistency between Source hash introduction and Source hash usage Keiji Takeda (Monday, 27 October)
    • Re: [CSP] Inconsistency between Source hash introduction and Source hash usage Mike West (Monday, 27 October)
      • Re: [CSP] Inconsistency between Source hash introduction and Source hash usage Mike West (Monday, 27 October)

[webappsec] updated (but still draft) TPAC agenda Brad Hill (Friday, 24 October)

Service workers, dedicated workers, and the environment settings object Anne van Kesteren (Friday, 24 October)

Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Mike West (Friday, 24 October)

• Re: Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Anne van Kesteren (Friday, 24 October)
  • Re: Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Anne van Kesteren (Friday, 24 October)
  • Re: Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Mike West (Friday, 24 October)
  • Re: Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Boris Zbarsky (Friday, 24 October)
    • Re: Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Mike West (Friday, 24 October)
• Re: Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Michal Zalewski (Friday, 24 October)
  • Re: Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Devdatta Akhawe (Friday, 24 October)
    • RE: Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Sean Snider (Saturday, 25 October)
      • RE: Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Tom Ritter (Saturday, 25 October)
      • Re: Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Mike West (Monday, 27 October)
      • Re: Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Frederik Braun (Monday, 27 October)
        • Re: Frame Ancestors and Referrer (Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note) Sean Snider (Wednesday, 29 October)
          • Frame access Sean Snider (Wednesday, 29 October)

[referrer] HTTPS->HTTP Mark Nottingham (Friday, 24 October)

• Re: [referrer] HTTPS->HTTP Anne van Kesteren (Friday, 24 October)
  • Re: [referrer] HTTPS->HTTP Mark Nottingham (Friday, 24 October)
    • Re: [referrer] HTTPS->HTTP Anne van Kesteren (Friday, 24 October)
• Re: [referrer] HTTPS->HTTP Brian Smith (Friday, 24 October)
  • Re: [referrer] HTTPS->HTTP Mike West (Friday, 24 October)
    • Re: [referrer] HTTPS->HTTP Jochen Eisinger (Friday, 24 October)
      • Re: [referrer] HTTPS->HTTP Mark Nottingham (Friday, 24 October)
        • Re: [referrer] HTTPS->HTTP Mike West (Friday, 24 October)
          • Re: [referrer] HTTPS->HTTP Jochen Eisinger (Friday, 24 October)
          • Re: [referrer] HTTPS->HTTP Mark Nottingham (Friday, 24 October)
            • Re: [referrer] HTTPS->HTTP Mike West (Friday, 24 October)
            • Re: [referrer] HTTPS->HTTP Mark Nottingham (Friday, 24 October)
            • Re: [referrer] HTTPS->HTTP Brad Hill (Friday, 24 October)
            • Re: [referrer] HTTPS->HTTP Mark Nottingham (Monday, 27 October)
            • Re: [referrer] HTTPS->HTTP Ian Melven (Monday, 27 October)
            • Re: [referrer] HTTPS->HTTP Martin Thomson (Monday, 27 October)

[integrity] Different ways to associate integrity information Mark Nottingham (Friday, 24 October)

• Re: [integrity] Different ways to associate integrity information Mike West (Friday, 24 October)
  • Re: [integrity] Different ways to associate integrity information Brad Hill (Friday, 24 October)
    • Re: [integrity] Different ways to associate integrity information Mark Nottingham (Monday, 27 October)

[webappsec] Rough and preliminary TPAC agenda for WebAppSec Brad Hill (Thursday, 23 October)

[MIX] Is origin an authenticated origin? Anne van Kesteren (Thursday, 23 October)

• Re: [MIX] Is origin an authenticated origin? Mike West (Thursday, 23 October)
  • Re: [MIX] Is origin an authenticated origin? Anne van Kesteren (Thursday, 23 October)
    • Re: [MIX] Is origin an authenticated origin? Mike West (Thursday, 23 October)
      • Re: [MIX] Is origin an authenticated origin? Anne van Kesteren (Thursday, 23 October)
        • Re: [MIX] Is origin an authenticated origin? Mike West (Thursday, 23 October)
          • Re: [MIX] Is origin an authenticated origin? Anne van Kesteren (Thursday, 23 October)
            • Re: [MIX] Is origin an authenticated origin? Mike West (Thursday, 23 October)
            • Re: [MIX] Is origin an authenticated origin? Anne van Kesteren (Thursday, 23 October)
            • Re: [MIX] Is origin an authenticated origin? Mike West (Thursday, 23 October)
            • Re: [MIX] Is origin an authenticated origin? Anne van Kesteren (Thursday, 23 October)
            • Re: [MIX] Is origin an authenticated origin? Anne van Kesteren (Tuesday, 28 October)
            • Re: [MIX] Is origin an authenticated origin? Mike West (Tuesday, 28 October)
            • Re: [MIX] Is origin an authenticated origin? Anne van Kesteren (Tuesday, 28 October)
            • Re: [MIX] Is origin an authenticated origin? Mike West (Tuesday, 28 October)
            • Re: [MIX] Is origin an authenticated origin? Anne van Kesteren (Wednesday, 29 October)

[MIX] feedback Mark Nottingham (Thursday, 23 October)

• Re: [MIX] feedback Anne van Kesteren (Thursday, 23 October)
• Re: [MIX] feedback Mike West (Thursday, 23 October)
  • Re: [MIX] feedback Anne van Kesteren (Thursday, 23 October)
    • Re: [MIX] feedback Mike West (Thursday, 23 October)
      • Re: [MIX] feedback Anne van Kesteren (Thursday, 23 October)
  • Re: [MIX] feedback Mark Nottingham (Thursday, 23 October)

[webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note Brad Hill (Monday, 20 October)

• Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note Devdatta Akhawe (Tuesday, 21 October)
  • Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note Mike West (Tuesday, 21 October)
• Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note Giorgio Maone (Tuesday, 21 October)
  • RE: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note Sean Snider (Wednesday, 22 October)
• Re: [webappsec] Call for Consensus: Stop work on Content Security Policy 1.0, transition to WG Note Ian Melven (Thursday, 23 October)

[webappsec] Call for Consensus: CSP Level 2 to Candidate Recommendation Brad Hill (Monday, 20 October)

[webappsec] Survey on WebAppSec Charter v.Next work Brad Hill (Monday, 20 October)

"Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Mike West (Monday, 20 October)

• Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Chris Palmer (Monday, 20 October)
  • Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Brad Hill (Monday, 20 October)
    • Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Adrienne Porter Felt (Monday, 20 October)
      • Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Chris Palmer (Monday, 20 October)
        • Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Brad Hill (Monday, 20 October)
          • Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Chris Palmer (Monday, 20 October)
            • Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Mike West (Monday, 20 October)
      • Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Brad Hill (Monday, 20 October)
  • Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Ángel González (Tuesday, 21 October)
    • Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Chris Palmer (Tuesday, 21 October)
      • Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Jim Manico (Tuesday, 21 October)
      • Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Jeffrey Walton (Wednesday, 22 October)
        • RE: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) David Rogers (Wednesday, 22 October)
          • Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) Chris Palmer (Wednesday, 22 October)
            • RE: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) David Rogers (Wednesday, 22 October)

referrer policy questions Sid Stamm (Monday, 20 October)

• Re: referrer policy questions Mike West (Monday, 20 October)
  • Re: referrer policy questions Boris Zbarsky (Monday, 20 October)
    • Re: referrer policy questions Mike West (Monday, 20 October)
  • Re: referrer policy questions Sid Stamm (Monday, 20 October)

[webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT Brad Hill (Sunday, 19 October)

• Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT Mike West (Monday, 20 October)
  • Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT Anne van Kesteren (Monday, 20 October)
    • Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT Mike West (Monday, 20 October)
      • Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT Anne van Kesteren (Monday, 20 October)
        • Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT Mike West (Monday, 20 October)
          • Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT Anne van Kesteren (Monday, 20 October)
            • Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT Mike West (Monday, 20 October)
  • Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT Brad Hill (Monday, 20 October)
    • Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT Michael[tm] Smith (Tuesday, 21 October)

[webappsec] Topics for Rechartering Brad Hill (Sunday, 19 October)

• Re: [webappsec] Topics for Rechartering Anne van Kesteren (Monday, 20 October)
• Re: [webappsec] Topics for Rechartering Harry Halpin (Monday, 27 October)

NTP vs. HSTS John Kemp (Thursday, 16 October)

• Re: NTP vs. HSTS Anne van Kesteren (Thursday, 16 October)
  • Re: NTP vs. HSTS Adam Langley (Thursday, 16 October)
    • Re: NTP vs. HSTS Chris Palmer (Thursday, 16 October)
    • Re: NTP vs. HSTS Adam Langley (Thursday, 16 October)
      • Re: NTP vs. HSTS Pawel Krawczyk (Thursday, 16 October)
• Re: NTP vs. HSTS =JeffH (Friday, 17 October)
  • Re: NTP vs. HSTS Adam Langley (Friday, 17 October)
• Re: NTP vs. HSTS Jose Selvi (Thursday, 16 October)
• Re: NTP vs. HSTS =JeffH (Friday, 17 October)

[Credential Management]: Tiny prototype to play around with. Mike West (Thursday, 16 October)

• Re: [Credential Management]: Tiny prototype to play around with. Manu Sporny (Thursday, 16 October)
  • Re: [Credential Management]: Tiny prototype to play around with. Mike West (Friday, 17 October)
    • Re: [Credential Management]: Tiny prototype to play around with. Manu Sporny (Sunday, 26 October)

[webappsec] draft new WG home page Brad Hill (Monday, 13 October)

• Re: [webappsec] draft new WG home page Brad Hill (Monday, 13 October)
  • Re: [webappsec] draft new WG home page Mike West (Tuesday, 14 October)
    • Re: [webappsec] draft new WG home page Brad Hill (Tuesday, 14 October)
      • Re: [webappsec] draft new WG home page Wendy Seltzer (Thursday, 16 October)

Allow dynamically inserted <script>-Tags from trustworthy Scripts Florian Weber (Thursday, 9 October)

• Re: Allow dynamically inserted <script>-Tags from trustworthy Scripts Mike West (Tuesday, 14 October)
  • Re: Allow dynamically inserted <script>-Tags from trustworthy Scripts Florian Weber (Tuesday, 14 October)
• Re: Allow dynamically inserted <script>-Tags from trustworthy Scripts Florian Weber (Tuesday, 21 October)
  • Re: Allow dynamically inserted <script>-Tags from trustworthy Scripts Anne van Kesteren (Tuesday, 21 October)
• Re: Allow dynamically inserted <script>-Tags from trustworthy Scripts Florian Weber (Tuesday, 21 October)
  • Re: Allow dynamically inserted <script>-Tags from trustworthy Scripts Anne van Kesteren (Wednesday, 22 October)
  • RE: Allow dynamically inserted <script>-Tags from trustworthy Scripts Sean Snider (Thursday, 23 October)
    • Re: Allow dynamically inserted <script>-Tags from trustworthy Scripts Florian Weber (Thursday, 23 October)

webappsec-ACTION-189: Evaluatescript-ancestors Web Application Security Working Group Issue Tracker (Wednesday, 8 October)

webappsec-ACTION-188: Evaluate json-src Web Application Security Working Group Issue Tracker (Wednesday, 8 October)

Agenda for WebAppSec WG teleconference Wednesday Oct 8 Daniel Veditz (Wednesday, 8 October)

[webappsec] SRI : allow multiple integrity attributes or ni:// uris? Brad Hill (Monday, 6 October)

• Re: [webappsec] SRI : allow multiple integrity attributes or ni:// uris? Devdatta Akhawe (Monday, 6 October)

This week's teleconference - keep it Wednesday for one more week Brad Hill (Monday, 6 October)

[integrity] content-addressable cache? Frederik Braun (Monday, 6 October)

• Re: [integrity] content-addressable cache? Anne van Kesteren (Monday, 6 October)
  • Re: [integrity] content-addressable cache? Mark Goodwin (Monday, 6 October)
• Re: [integrity] content-addressable cache? Mark Goodwin (Monday, 6 October)
  • Re: [integrity] content-addressable cache? Devdatta Akhawe (Monday, 6 October)
    • Re: [integrity] content-addressable cache? Mark Goodwin (Monday, 6 October)
      • Re: [integrity] content-addressable cache? Brad Hill (Monday, 6 October)
        • Re: [integrity] content-addressable cache? Mark Goodwin (Tuesday, 7 October)
          • Re: [integrity] content-addressable cache? Mark Goodwin (Wednesday, 8 October)
• Re: [integrity] content-addressable cache? Devdatta Akhawe (Monday, 6 October)
• Re: [integrity] content-addressable cache? Mark Nottingham (Friday, 24 October)
  • Re: [integrity] content-addressable cache? Brad Hill (Friday, 24 October)

Last message date: Friday, 31 October 2014 18:38:19 UTC