Weekly github digest (WebAppSec specs)

Issues
------
* w3c/webappsec-csp (+1/-0/💬10)
  1 issues created:
  - Handling of javascript: navigations is not interoperable, spec doesn't match most implementations (by bzbarsky)
    https://github.com/w3c/webappsec-csp/issues/322 

  4 issues received 10 new comments:
  - #215 Multiple CSP headers restriction is unclear (6 by nevercast, cnsgithub)
    https://github.com/w3c/webappsec-csp/issues/215 
  - #322 Handling of javascript: navigations is not interoperable, spec doesn't match most implementations (2 by bzbarsky)
    https://github.com/w3c/webappsec-csp/issues/322 
  - #8 CSP: form-action and redirects (1 by foolip)
    https://github.com/w3c/webappsec-csp/issues/8 [CSP] 
  - #194 The `disown-opener` directive is not the right model (1 by Malvoz)
    https://github.com/w3c/webappsec-csp/issues/194 

* w3c/webappsec-credential-management (+1/-0/💬0)
  1 issues created:
  - input type file as iconURL  (by marcoscaceres)
    https://github.com/w3c/webappsec-credential-management/issues/126 



Pull requests
-------------
* w3c/webappsec-credential-management (+0/-0/💬1)
  1 pull requests received 1 new comments:
  - #100 issue 92 accessing settings object: add passing global and queue task invoke callback (1 by equalsJeffH)
    https://github.com/w3c/webappsec-credential-management/pull/100 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c/webappsec
* https://github.com/w3c/webappsec-subresource-integrity
* https://github.com/w3c/webappsec-csp
* https://github.com/w3c/webappsec-mixed-content
* https://github.com/w3c/webappsec-upgrade-insecure-requests
* https://github.com/w3c/webappsec-credential-management
* https://github.com/w3c/permissions
* https://github.com/w3c/webappsec-referrer-policy
* https://github.com/w3c/webappsec-secure-contexts
* https://github.com/w3c/webappsec-clear-site-data
* https://github.com/w3c/webappsec-cowl
* https://github.com/w3c/webappsec-epr
* https://github.com/w3c/webappsec-suborigins