- From: W3C Webmaster via GitHub API <sysbot+gh@w3.org>
- Date: Mon, 17 Jun 2019 17:00:24 +0000
- To: public-webappsec@w3.org
- Message-Id: <E1hcuzY-0006xT-96@uranus.w3.org>
Issues
------
* w3c/webappsec-csp (+1/-0/💬10)
1 issues created:
- Define interaction between script-src / trusted-types (by mikesamuel)
https://github.com/w3c/webappsec-csp/issues/401
2 issues received 10 new comments:
- #400 frame-src spec does not match implementations in terms of which CSP is used (7 by bzbarsky, dveditz)
https://github.com/w3c/webappsec-csp/issues/400
- #395 Scripts only in <head> (3 by craigfrancis, briansmith)
https://github.com/w3c/webappsec-csp/issues/395
* w3c/webappsec-upgrade-insecure-requests (+0/-0/💬1)
1 issues received 1 new comments:
- #17 Use of "incumbent settings object" in "Policy inheritance" section does not make sense (1 by annevk)
https://github.com/w3c/webappsec-upgrade-insecure-requests/issues/17
* w3c/permissions (+0/-0/💬1)
1 issues received 1 new comments:
- #192 Add "wake-lock" permission type (1 by rakuco)
https://github.com/w3c/permissions/issues/192
* w3c/webappsec-referrer-policy (+0/-0/💬2)
1 issues received 2 new comments:
- #121 What default policy should new features use? (2 by fmarier, annevk)
https://github.com/w3c/webappsec-referrer-policy/issues/121
* w3c/webappsec-feature-policy (+0/-0/💬3)
1 issues received 3 new comments:
- #274 Allowing cases where document.write is "ok" (3 by Jamesernator, jakearchibald)
https://github.com/w3c/webappsec-feature-policy/issues/274 [feature question]
* WICG/trusted-types (+0/-1/💬2)
2 issues received 2 new comments:
- #176 Putting guards at primitives instead of sinks (1 by annevk)
https://github.com/WICG/trusted-types/issues/176
- #132 Explain the Trusted Type behavior as an IDL attribute (1 by koto)
https://github.com/WICG/trusted-types/issues/132 [spec]
1 issues closed:
- Explain the Trusted Type behavior as an IDL attribute https://github.com/WICG/trusted-types/issues/132 [spec]
Pull requests
-------------
* w3c/webappsec-feature-policy (+0/-3/💬4)
3 pull requests received 4 new comments:
- #306 add webauthn as proposed feature (FP issue #168) (2 by equalsJeffH, clelland)
https://github.com/w3c/webappsec-feature-policy/pull/306
- #321 Fix spec link in focus-without-user-activation Policy (1 by clelland)
https://github.com/w3c/webappsec-feature-policy/pull/321
- #315 features.md: Add 'loading-image-default-eager'. (1 by clelland)
https://github.com/w3c/webappsec-feature-policy/pull/315
3 pull requests merged:
- Fix spec link in focus-without-user-activation Policy
https://github.com/w3c/webappsec-feature-policy/pull/321
- features.md: Add 'loading-image-default-eager'.
https://github.com/w3c/webappsec-feature-policy/pull/315
- Clarify wording of non-Window global scopes issue
https://github.com/w3c/webappsec-feature-policy/pull/307
* WICG/trusted-types (+0/-2/💬0)
2 pull requests merged:
- Added TrustedTypes extended attribute to spec
https://github.com/WICG/trusted-types/pull/168
- edit docs
https://github.com/WICG/trusted-types/pull/180
Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c/webappsec
* https://github.com/w3c/webappsec-subresource-integrity
* https://github.com/w3c/webappsec-csp
* https://github.com/w3c/webappsec-mixed-content
* https://github.com/w3c/webappsec-upgrade-insecure-requests
* https://github.com/w3c/webappsec-credential-management
* https://github.com/w3c/permissions
* https://github.com/w3c/webappsec-referrer-policy
* https://github.com/w3c/webappsec-secure-contexts
* https://github.com/w3c/webappsec-clear-site-data
* https://github.com/w3c/webappsec-cowl
* https://github.com/w3c/webappsec-epr
* https://github.com/w3c/webappsec-suborigins
* https://github.com/w3c/webappsec-cspee
* https://github.com/w3c/webappsec-feature-policy
* https://github.com/w3c/webappsec-fetch-metadata
* https://github.com/WICG/trusted-types
Received on Monday, 17 June 2019 17:00:26 UTC