- From: Anne van Kesteren <annevk@annevk.nl>
- Date: Mon, 18 Jul 2016 09:30:32 +0200
- To: David Ross <drx@google.com>
- Cc: Brad Hill <hillbrad@gmail.com>, "public-webappsec@w3.org" <public-webappsec@w3.org>
On Wed, Jul 13, 2016 at 8:42 PM, David Ross <drx@google.com> wrote: > In any case, EPR has been stalled for other reasons and I'm not going to > contest the proposed transition. I just hope that it won't be too hard to > revive it as necessary in the future. Can you elaborate on the other reasons? Although I'm still a little concerned about the features EPR offers, having isolation against XSS and XSRF does seem like a necessary component to offer more low-level APIs to the web. -- https://annevankesteren.nl/
Received on Monday, 18 July 2016 07:31:00 UTC