- From: Anne van Kesteren <annevk@annevk.nl>
- Date: Thu, 15 Oct 2015 12:00:55 +0200
- To: Mike West <mkwst@google.com>
- Cc: Richard Barnes <rbarnes@mozilla.com>, WebAppSec WG <public-webappsec@w3.org>
On Thu, Oct 15, 2015 at 9:09 AM, Mike West <mkwst@google.com> wrote: > Would that really provide any value above and beyond `frame-ancestors https:`? It would for various URL schemes that are not entirely unrealistic in an ancestor chain, e.g., about:blank, about:srcdoc, data:.... -- https://annevankesteren.nl/
Received on Thursday, 15 October 2015 10:01:19 UTC