Weekly github digest (WebAppSec specs) from W3C Webmaster via GitHub API on 2020-07-27 (public-webappsec@w3.org from July 2020)

From: W3C Webmaster via GitHub API <sysbot+gh@w3.org>
Date: Mon, 27 Jul 2020 17:00:14 +0000
To: public-webappsec@w3.org
Message-Id: <E1k06U2-0003XQ-Mx@uranus.w3.org>
Issues
------
* w3c/webappsec-subresource-integrity (+1/-0/💬1)
  1 issues created:
  - Remove the `integrity` IDL attributes (by foolip)
    https://github.com/w3c/webappsec-subresource-integrity/issues/92 

  1 issues received 1 new comments:
  - #92 Remove the `integrity` IDL attributes (1 by annevk)
    https://github.com/w3c/webappsec-subresource-integrity/issues/92 

* w3c/webappsec-csp (+0/-0/💬1)
  1 issues received 1 new comments:
  - #277 Allow CSP-Report-Only in meta tags. (1 by koto)
    https://github.com/w3c/webappsec-csp/issues/277 

* w3c/permissions (+2/-1/💬9)
  2 issues created:
  - Write a Security Considerations section (by jyasskin)
    https://github.com/w3c/permissions/issues/221 
  - chore: Turn on `Assume Explicit For` (by jyasskin)
    https://github.com/w3c/permissions/issues/220 

  3 issues received 9 new comments:
  - #215 Publish new WD to /TR? (7 by jyasskin, marcoscaceres, tabatkins)
    https://github.com/w3c/permissions/issues/215 
  - #211 Script origin bound permissions (1 by marcoscaceres)
    https://github.com/w3c/permissions/issues/211 [question] 
  - #175 Clipboard permissions (1 by othermaciej)
    https://github.com/w3c/permissions/issues/175 

  1 issues closed:
  - Script origin bound permissions https://github.com/w3c/permissions/issues/211 [question] 

* w3c/webappsec-secure-contexts (+1/-0/💬0)
  1 issues created:
  - Upstream monkey-patches to HTML and delete in this spec (by foolip)
    https://github.com/w3c/webappsec-secure-contexts/issues/79 

* w3c/webappsec-clear-site-data (+1/-0/💬0)
  1 issues created:
  - Clear-Site-Data and partitioning (by annevk)
    https://github.com/w3c/webappsec-clear-site-data/issues/66 

* w3c/webappsec-feature-policy (+1/-0/💬1)
  1 issues created:
  - Document Policy feature detection (by clelland)
    https://github.com/w3c/webappsec-permissions-policy/issues/399 

  1 issues received 1 new comments:
  - #261 [Proposal] Accessibility policy (1 by nickcolley)
    https://github.com/w3c/webappsec-permissions-policy/issues/261 [proposed feature] 

* WICG/trusted-types (+0/-0/💬1)
  1 issues received 1 new comments:
  - #256 require-trusted-types-for 'wasm' (1 by hackcasual)
    https://github.com/w3c/webappsec-trusted-types/issues/256 [future] [spec] 



Pull requests
-------------
* w3c/permissions (+4/-3/💬6)
  4 pull requests submitted:
  - Auto-fetch the previous version link. (by jyasskin)
    https://github.com/w3c/permissions/pull/219 
  - Rename "speaker" to "speaker-selection" + media devices are secure context (by jan-ivar)
    https://github.com/w3c/permissions/pull/218 
  - Remove almost all link-defaults. (by jyasskin)
    https://github.com/w3c/permissions/pull/217 
  - Export the "Set Permission" dfn to fix a Bikeshed warning. (by jyasskin)
    https://github.com/w3c/permissions/pull/216 

  3 pull requests received 6 new comments:
  - #218 Rename "speaker" to "speaker-selection" + media devices are secure context (3 by annevk, jan-ivar, marcoscaceres)
    https://github.com/w3c/permissions/pull/218 
  - #217 Remove almost all link-defaults. (1 by marcoscaceres)
    https://github.com/w3c/permissions/pull/217 
  - #216 Export the "Set Permission" dfn to fix a Bikeshed warning. (2 by jyasskin, marcoscaceres)
    https://github.com/w3c/permissions/pull/216 

  3 pull requests merged:
  - Remove almost all link-defaults.
    https://github.com/w3c/permissions/pull/217 
  - Noexport the "Set Permission" dfn to fix a Bikeshed warning.
    https://github.com/w3c/permissions/pull/216 
  - Rename "speaker" to "speaker-selection" + media devices are secure context
    https://github.com/w3c/permissions/pull/218 

* w3c/webappsec-feature-policy (+1/-2/💬2)
  1 pull requests submitted:
  - Add "speaker-selection" permissions policy. (by jan-ivar)
    https://github.com/w3c/webappsec-permissions-policy/pull/398 

  2 pull requests received 2 new comments:
  - #397 Gamepad is proposed (1 by clelland)
    https://github.com/w3c/webappsec-permissions-policy/pull/397 
  - #395 geolocation permission policy was merged (1 by clelland)
    https://github.com/w3c/webappsec-permissions-policy/pull/395 

  2 pull requests merged:
  - Gamepad is proposed
    https://github.com/w3c/webappsec-permissions-policy/pull/397 
  - geolocation permission policy was merged
    https://github.com/w3c/webappsec-permissions-policy/pull/395 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c/webappsec
* https://github.com/w3c/webappsec-subresource-integrity
* https://github.com/w3c/webappsec-csp
* https://github.com/w3c/webappsec-mixed-content
* https://github.com/w3c/webappsec-upgrade-insecure-requests
* https://github.com/w3c/webappsec-credential-management
* https://github.com/w3c/permissions
* https://github.com/w3c/webappsec-referrer-policy
* https://github.com/w3c/webappsec-secure-contexts
* https://github.com/w3c/webappsec-clear-site-data
* https://github.com/w3c/webappsec-cowl
* https://github.com/w3c/webappsec-epr
* https://github.com/w3c/webappsec-suborigins
* https://github.com/w3c/webappsec-cspee
* https://github.com/w3c/webappsec-feature-policy
* https://github.com/w3c/webappsec-fetch-metadata
* https://github.com/WICG/trusted-types
* https://github.com/w3c/webappsec-unofficial-drafts
Received on Monday, 27 July 2020 17:00:17 UTC