W3C home > Mailing lists > Public > public-webappsec@w3.org > April 2015

Re: CfC: Subresource Integrity (SRI) to Last Call?

From: Joel Weinberger <jww@chromium.org>
Date: Thu, 23 Apr 2015 21:48:06 +0000
Message-ID: <CAHQV2K=dV_SzgSsoU1vXVdaMaZGgF8ewjQkihibT8H=Zm3EA7g@mail.gmail.com>
To: Austin William Wright <aaa@bzfx.net>
Cc: Devdatta Akhawe <dev.akhawe@gmail.com>, Frederik Braun <fbraun@mozilla.com>, "public-webappsec@w3.org" <public-webappsec@w3.org>
In the case of link, the href URI, and in the case of scripts, the src URI.

On Thu, Apr 23, 2015 at 2:45 PM Austin William Wright <aaa@bzfx.net> wrote:

> On Wed, Apr 22, 2015 at 3:48 PM, Joel Weinberger <jww@chromium.org> wrote:
>> I'm not particular tied to any syntax. I have never viewed the
>> 'integrity' attribute as a resource identifier (to the contrary, in the
>> cases we're dealing with, there is a separate resource identifier), so the
>> ni:/// never felt appropriate to me, and I've preferred the symmetry with
>> CSP here.
>  Could you briefly describe the "separate resource identifier" you're
> referring to?
> Austin.
Received on Thursday, 23 April 2015 21:48:34 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:48 UTC