Re: Subresource integrity in Chromium from Ilya Grigorik on 2014-09-24 (public-webappsec@w3.org from September 2014)

From: Ilya Grigorik <igrigorik@gmail.com>
Date: Wed, 24 Sep 2014 07:39:53 -0700
To: Mike West <mkwst@google.com>
Cc: "Hill, Brad" <bhill@paypal.com>, Joel Weinberger <jww@chromium.org>, "public-webappsec@w3.org" <public-webappsec@w3.org>
Message-ID: <CAKRe7JERjrGT2_eFtEB7FMTwe6g8fWaOSq-oXiC+R__sZu+v7A@mail.gmail.com>

Great to see this! Curious, any plans to implement the optional caching
mechanism(s)?

On Wed, Sep 24, 2014 at 7:09 AM, Mike West <mkwst@google.com> wrote:

> It's behind chrome://flags/#enable-experimental-web-platform-features, and
> I'd expect Joel's work to end up in Canary in a day or three.
>
> -mike
>
> --
> Mike West <mkwst@google.com>
> Google+: https://mkw.st/+, Twitter: @mikewest, Cell: +49 162 10 255 91
>
> Google Germany GmbH, Dienerstrasse 12, 80331 München, Germany
> Registergericht und -nummer: Hamburg, HRB 86891
> Sitz der Gesellschaft: Hamburg
> Geschäftsführer: Graham Law, Christine Elizabeth Flores
> (Sorry; I'm legally required to add this exciting detail to emails. Bleh.)
>
> On Wed, Sep 24, 2014 at 5:11 AM, Hill, Brad <bhill@paypal.com> wrote:
>
>> That's awesome.  What's the flag?  How do we try it?
>>
>> On Sep 23, 2014, at 4:19 PM, Joel Weinberger <jww@chromium.org> wrote:
>>
>> > An initial implementation of SRI behind an experimental flag *only* for
>> secure hosts to secure resources (and only for scripts) just landed on
>> tip-of-tree Blink: https://codereview.chromium.org/566083003/. I plan on
>> adding in style tag support soon.
>> > --Joel
>>
>>
>>
>

Received on Thursday, 25 September 2014 12:37:53 UTC