W3C home > Mailing lists > Public > public-webappsec@w3.org > October 2018

Weekly github digest (WebAppSec specs)

From: W3C Webmaster via GitHub API <sysbot+gh@w3.org>
Date: Mon, 15 Oct 2018 17:00:12 +0000
To: public-webappsec@w3.org
Message-Id: <E1gC6E0-0003zc-4Q@uranus.w3.org>



Issues
------
* w3c/webappsec (+0/-1/💬1)
  1 issues received 1 new comments:
  - #504 [SRI] Shared Cache through `sharedcache` attribute (1 by annevk)
    https://github.com/w3c/webappsec/issues/504 [SRI] 

  1 issues closed:
  - [SRI] Shared Cache through `sharedcache` attribute https://github.com/w3c/webappsec/issues/504 [SRI] 

* w3c/webappsec-csp (+3/-4/💬19)
  3 issues created:
  - Should CSPEE be its own repository? (by annevk)
    https://github.com/w3c/webappsec-csp/issues/352 
  - How is CSPEE recursive? (by annevk)
    https://github.com/w3c/webappsec-csp/issues/351 
  - Allow report-to in CSP and CSPRO meta tags (by ScottHelme)
    https://github.com/w3c/webappsec-csp/issues/348 

  7 issues received 19 new comments:
  - #351 How is CSPEE recursive? (6 by annevk, mikewest)
    https://github.com/w3c/webappsec-csp/issues/351 
  - #161 Specify browser behavior for CSP headers on 304 (not modified) responses (5 by annevk, andypaicu, mnot)
    https://github.com/w3c/webappsec-csp/issues/161 
  - #352 Should CSPEE be its own repository? (3 by wseltzer, mikewest)
    https://github.com/w3c/webappsec-csp/issues/352 
  - #339 Spec nav-items not totally visible due to overflow at some break-points (2 by andypaicu, Malvoz)
    https://github.com/w3c/webappsec-csp/issues/339 
  - #109 Hash encodings should be converted to UTF-8 (1 by andypaicu)
    https://github.com/w3c/webappsec-csp/issues/109 [bug] 
  - #277 Allow CSP-Report-Only in meta tags. (1 by annevk)
    https://github.com/w3c/webappsec-csp/issues/277 
  - #87 Allow dynamically enabling/disabling unsafe-eval (1 by arturjanc)
    https://github.com/w3c/webappsec-csp/issues/87 

  4 issues closed:
  - Should CSPEE be its own repository? https://github.com/w3c/webappsec-csp/issues/352 
  - `navigation request’s URL` is unclear https://github.com/w3c/webappsec-csp/issues/343 
  - Spec nav-items not totally visible due to overflow at some break-points https://github.com/w3c/webappsec-csp/issues/339 
  - Hash encodings should be converted to UTF-8 https://github.com/w3c/webappsec-csp/issues/109 [bug] 

* w3c/webappsec-credential-management (+0/-0/💬4)
  1 issues received 4 new comments:
  - #128 copy (aka snapshot) any buffersources in options before going async (4 by annevk, equalsJeffH, bzbarsky)
    https://github.com/w3c/webappsec-credential-management/issues/128 

* w3c/webappsec-referrer-policy (+1/-0/💬0)
  1 issues created:
  - Redesign of "extract header list values" expected (by annevk)
    https://github.com/w3c/webappsec-referrer-policy/issues/115 

* w3c/webappsec-clear-site-data (+1/-0/💬0)
  1 issues created:
  - Redesign of "extract header list values" expected (by annevk)
    https://github.com/w3c/webappsec-clear-site-data/issues/51 



Pull requests
-------------
* w3c/webappsec-csp (+2/-1/💬4)
  2 pull requests submitted:
  - Changed names of some SPV event members (by andypaicu)
    https://github.com/w3c/webappsec-csp/pull/353 
  - Fixed navigations running on URL instead of current URL (by andypaicu)
    https://github.com/w3c/webappsec-csp/pull/347 

  2 pull requests received 4 new comments:
  - #353 Changed names of some SPV event members (2 by annevk, mikewest)
    https://github.com/w3c/webappsec-csp/pull/353 
  - #293 Minimal specification of 'wasm-eval' source directive (2 by annevk, arturjanc)
    https://github.com/w3c/webappsec-csp/pull/293 

  1 pull requests merged:
  - Fixed navigations running on URL instead of current URL
    https://github.com/w3c/webappsec-csp/pull/347 

* w3c/permissions (+1/-0/💬3)
  1 pull requests submitted:
  - Add 'display' permission for screen-capture. (by jan-ivar)
    https://github.com/w3c/permissions/pull/184 

  1 pull requests received 3 new comments:
  - #163 Add support for permissions that have an associated Feature Policy (3 by marcoscaceres, jan-ivar)
    https://github.com/w3c/permissions/pull/163 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c/webappsec
* https://github.com/w3c/webappsec-subresource-integrity
* https://github.com/w3c/webappsec-csp
* https://github.com/w3c/webappsec-mixed-content
* https://github.com/w3c/webappsec-upgrade-insecure-requests
* https://github.com/w3c/webappsec-credential-management
* https://github.com/w3c/permissions
* https://github.com/w3c/webappsec-referrer-policy
* https://github.com/w3c/webappsec-secure-contexts
* https://github.com/w3c/webappsec-clear-site-data
* https://github.com/w3c/webappsec-cowl
* https://github.com/w3c/webappsec-epr
* https://github.com/w3c/webappsec-suborigins
* https://github.com/w3c/webappsec-cspee
Received on Monday, 15 October 2018 17:00:14 UTC

This archive was generated by hypermail 2.3.1 : Monday, 15 October 2018 17:00:14 UTC