W3C home > Mailing lists > Public > public-webappsec@w3.org > June 2018

Weekly github digest (WebAppSec specs)

From: W3C Webmaster via GitHub API <sysbot+gh@w3.org>
Date: Mon, 11 Jun 2018 17:00:28 +0000
To: public-webappsec@w3.org
Message-Id: <E1fSQBA-0003LC-EB@uranus.w3.org>



Issues
------
* w3c/webappsec (+0/-1/💬1)
  1 issues received 1 new comments:
  - #534 'strict-dynamic' should not be bound to only nonces/hashes (1 by april)
    https://github.com/w3c/webappsec/issues/534 

  1 issues closed:
  - 'strict-dynamic' should not be bound to only nonces/hashes https://github.com/w3c/webappsec/issues/534 

* w3c/webappsec-csp (+3/-1/💬3)
  3 issues created:
  - Clarification of term "parser-inserted" (by nikitastupin)
    https://github.com/w3c/webappsec-csp/issues/314 
  - Directives fallback is not property setup for inline checks (by andypaicu)
    https://github.com/w3c/webappsec-csp/issues/310 
  - 'strict-dynamic' should not be bound to only nonces/hashes (by april)
    https://github.com/w3c/webappsec-csp/issues/309 

  2 issues received 3 new comments:
  - #301 CSP 4 feature request: cookie policy (2 by AliceWonderMiscreations, Malvoz)
    https://github.com/w3c/webappsec-csp/issues/301 
  - #308 BackSwap type of attack (1 by AliceWonderMiscreations)
    https://github.com/w3c/webappsec-csp/issues/308 

  1 issues closed:
  - worklet-src directive needed for worklets? https://github.com/w3c/webappsec-csp/issues/203 

* w3c/permissions (+1/-0/💬1)
  1 issues created:
  - Background GeoLocation (by OpenLocationServices)
    https://github.com/w3c/permissions/issues/179 

  1 issues received 1 new comments:
  - #167 The boolean permission query algorithm isn't Boolean (1 by jackpalmer1)
    https://github.com/w3c/permissions/issues/167 

* w3c/webappsec-secure-contexts (+0/-0/💬1)
  1 issues received 1 new comments:
  - #60 Using secure-context gated features with local devices (1 by pinobatch)
    https://github.com/w3c/webappsec-secure-contexts/issues/60 



Pull requests
-------------
* w3c/webappsec-csp (+3/-0/💬2)
  3 pull requests submitted:
  - Un-deprecated child-src (by andypaicu)
    https://github.com/w3c/webappsec-csp/pull/313 
  - Un-deprecated child-src (by andypaicu)
    https://github.com/w3c/webappsec-csp/pull/312 
  - Wrote necessary spec changes for 'unsafe-hashed-attributes' (by andypaicu)
    https://github.com/w3c/webappsec-csp/pull/311 

  2 pull requests received 2 new comments:
  - #312 Un-deprecated child-src (1 by andypaicu)
    https://github.com/w3c/webappsec-csp/pull/312 
  - #247 Add extra note for 'unsafe-hashed-attributes' to address backwards co… (1 by andypaicu)
    https://github.com/w3c/webappsec-csp/pull/247 

* w3c/webappsec-clear-site-data (+0/-0/💬1)
  1 pull requests received 1 new comments:
  - #36 Update server file to be used with Python 3 (1 by plehegar)
    https://github.com/w3c/webappsec-clear-site-data/pull/36 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c/webappsec
* https://github.com/w3c/webappsec-subresource-integrity
* https://github.com/w3c/webappsec-csp
* https://github.com/w3c/webappsec-mixed-content
* https://github.com/w3c/webappsec-upgrade-insecure-requests
* https://github.com/w3c/webappsec-credential-management
* https://github.com/w3c/permissions
* https://github.com/w3c/webappsec-referrer-policy
* https://github.com/w3c/webappsec-secure-contexts
* https://github.com/w3c/webappsec-clear-site-data
* https://github.com/w3c/webappsec-cowl
* https://github.com/w3c/webappsec-epr
* https://github.com/w3c/webappsec-suborigins
Received on Monday, 11 June 2018 17:00:32 UTC

This archive was generated by hypermail 2.3.1 : Monday, 11 June 2018 17:00:32 UTC