Re: 'strict-dynamic' syntax (was Re: On the Insecurity of Whitelists and the Future of CSP) from Daniel Veditz on 2016-09-14 (public-webappsec@w3.org from September 2016)

From: Daniel Veditz <dveditz@mozilla.com>
Date: Tue, 13 Sep 2016 22:35:30 -0700
To: Mike West <mkwst@google.com>
Cc: Artur Janc <aaj@google.com>, Christoph Kerschbaumer <ckerschbaumer@mozilla.com>, Anne van Kesteren <annevk@annevk.nl>, "Hodges, Jeff" <jeff.hodges@paypal.com>, W3C Web App Security WG <public-webappsec@w3.org>, Craig Francis <craig.francis@gmail.com>
Message-ID: <CADYDTCD2x04_i8m1RsEhsB22=rqYo9O+VxO7oi_ER2Ru6iJOTA@mail.gmail.com>

On Tue, Sep 13, 2016 at 12:27 PM, Mike West <mkwst@google.com> wrote:

> Friendly ping. :)
>

Sorry for the delay, we're arguing amongst ourselves to come up with a
"Mozilla" opinion we agree with because we fear anything we say as
individuals will be interpreted as "The Mozilla opinion" anyway.

I do appreciate Artur's argument and examples.

-
Dan Veditz

Received on Wednesday, 14 September 2016 05:36:02 UTC