W3C home > Mailing lists > Public > public-webappsec@w3.org > January 2020

Weekly github digest (WebAppSec specs)

From: W3C Webmaster via GitHub API <sysbot+gh@w3.org>
Date: Mon, 06 Jan 2020 17:00:19 +0000
To: public-webappsec@w3.org
Message-Id: <E1ioVjn-0001JV-8S@uranus.w3.org>



Issues
------
* w3c/webappsec-subresource-integrity (+1/-0/💬8)
  1 issues created:
  - Specify hash function naming (by fulldecent)
    https://github.com/w3c/webappsec-subresource-integrity/issues/89 

  3 issues received 8 new comments:
  - #89 Specify hash function naming (4 by devd, jonathanKingston)
    https://github.com/w3c/webappsec-subresource-integrity/issues/89 
  - #85 Consideration: Allow integrity-check based on signature instead of actual hash (3 by NL-William, devd, fulldecent)
    https://github.com/w3c/webappsec-subresource-integrity/issues/85 
  - #84 The algorithm for parsing metadata should be described in more detail (1 by annevk)
    https://github.com/w3c/webappsec-subresource-integrity/issues/84 

* w3c/webappsec-csp (+1/-0/💬1)
  1 issues created:
  - hash-algo (by annevk)
    https://github.com/w3c/webappsec-csp/issues/418 

  1 issues received 1 new comments:
  - #414 Spec is inconsistent about which strings are valid CSPs (1 by lucasgadani)
    https://github.com/w3c/webappsec-csp/issues/414 

* WICG/trusted-types (+0/-1/💬7)
  3 issues received 7 new comments:
  - #253 Specify no Trusted Type Policies allowed (4 by craigfrancis, koto)
    https://github.com/w3c/webappsec-trusted-types/issues/253 
  - #248 Alternative Options for Default Policy. (2 by annevk, koto)
    https://github.com/w3c/webappsec-trusted-types/issues/248 
  - #234 Navigating to plugins (1 by annevk)
    https://github.com/w3c/webappsec-trusted-types/issues/234 

  1 issues closed:
  - Specify no Trusted Type Policies allowed https://github.com/w3c/webappsec-trusted-types/issues/253 



Pull requests
-------------
* w3c/webappsec-subresource-integrity (+3/-0/💬2)
  3 pull requests submitted:
  - Reword SHA384 non-normative reference to SHA-384 hash function refere… (by jonathanKingston)
    https://github.com/w3c/webappsec-subresource-integrity/pull/90 
  - Correct spelling for other GitHub (by fulldecent)
    https://github.com/w3c/webappsec-subresource-integrity/pull/88 
  - Correct spelling of GitHub (by fulldecent)
    https://github.com/w3c/webappsec-subresource-integrity/pull/87 

  2 pull requests received 2 new comments:
  - #88 Correct spelling for other GitHub (1 by wseltzer)
    https://github.com/w3c/webappsec-subresource-integrity/pull/88 
  - #87 Correct spelling of GitHub (1 by wseltzer)
    https://github.com/w3c/webappsec-subresource-integrity/pull/87 

* w3c/webappsec-referrer-policy (+0/-0/💬1)
  1 pull requests received 1 new comments:
  - #130 Add Dominic Farolino as an editor (1 by wseltzer)
    https://github.com/w3c/webappsec-referrer-policy/pull/130 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c/webappsec
* https://github.com/w3c/webappsec-subresource-integrity
* https://github.com/w3c/webappsec-csp
* https://github.com/w3c/webappsec-mixed-content
* https://github.com/w3c/webappsec-upgrade-insecure-requests
* https://github.com/w3c/webappsec-credential-management
* https://github.com/w3c/permissions
* https://github.com/w3c/webappsec-referrer-policy
* https://github.com/w3c/webappsec-secure-contexts
* https://github.com/w3c/webappsec-clear-site-data
* https://github.com/w3c/webappsec-cowl
* https://github.com/w3c/webappsec-epr
* https://github.com/w3c/webappsec-suborigins
* https://github.com/w3c/webappsec-cspee
* https://github.com/w3c/webappsec-feature-policy
* https://github.com/w3c/webappsec-fetch-metadata
* https://github.com/WICG/trusted-types
* https://github.com/w3c/webappsec-unofficial-drafts
Received on Monday, 6 January 2020 17:00:20 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:55:10 UTC