Re: [SRI] We need to stop the proliferation of malicious software from Greg Neumiller on 2020-11-30 (public-webappsec@w3.org from December 2020)

From: Greg Neumiller <rlneumiller@gmail.com>
Date: Mon, 30 Nov 2020 15:40:01 -0800
To: Daniel Veditz <dveditz@mozilla.com>
Cc: Dominic Farolino <domfarolino@gmail.com>, WebAppSec WG <public-webappsec@w3.org>
Message-ID: <CAPvFLiSXHwMwazXzgBKhg0pHo4iBS9EsbMP9d1siZ8PbQBQ8Ew@mail.gmail.com>

Yes, that was my intent.

On Sun, Nov 29, 2020 at 9:54 PM Daniel Veditz <dveditz@mozilla.com> wrote:

> > Can you be more specific? It seems that subresource integrity is
> implemented
> > in most browsers: https://caniuse.com/?search=integrity
>
> Greg's mail is ambiguous, but it sounds like an upvote in favor of
> https://github.com/w3c/webappsec-subresource-integrity/issues/68
> (applying SRI to downloads). The current broad browser support only applies
> to some resources like scripts.
>
> -Dan Veditz
>

Received on Tuesday, 1 December 2020 00:28:03 UTC