W3C home > Mailing lists > Public > public-webappsec@w3.org > June 2020

Weekly github digest (WebAppSec specs)

From: W3C Webmaster via GitHub API <sysbot+gh@w3.org>
Date: Mon, 22 Jun 2020 17:00:12 +0000
To: public-webappsec@w3.org
Message-Id: <E1jnPno-0003gE-KX@uranus.w3.org>



Issues
------
* w3c/webappsec (+0/-0/💬1)
  1 issues received 1 new comments:
  - #561 CSP: Allow precise control of cookies (1 by hiburn8)
    https://github.com/w3c/webappsec/issues/561 

* w3c/permissions (+0/-0/💬9)
  2 issues received 9 new comments:
  - #175 Clipboard permissions (8 by dway123, marcoscaceres, saschanaz)
    https://github.com/w3c/permissions/issues/175 
  - #150 Media autoplay permission (1 by ShoryuKyzan)
    https://github.com/w3c/permissions/issues/150 

* w3c/webappsec-referrer-policy (+0/-1/💬0)
  1 issues closed:
  - Inconsistencies with "same-origin" requests https://github.com/w3c/webappsec-referrer-policy/issues/123 

* w3c/webappsec-feature-policy (+2/-2/💬3)
  2 issues created:
  - Document Policy Header as Dictionary (by clelland)
    https://github.com/w3c/webappsec-feature-policy/issues/387 
  - Usefulness of reporting in Permissions Policy (by clelland)
    https://github.com/w3c/webappsec-feature-policy/issues/386 

  3 issues received 3 new comments:
  - #381 Remove '*' default allowlist (1 by clelland)
    https://github.com/w3c/webappsec-feature-policy/issues/381 
  - #296 Dividing features across different types of policies (1 by clelland)
    https://github.com/w3c/webappsec-feature-policy/issues/296 [architecture] 
  - #282 Proposal: Define new feature types (1 by clelland)
    https://github.com/w3c/webappsec-feature-policy/issues/282 [architecture] [document-policy] 

  2 issues closed:
  - Dividing features across different types of policies https://github.com/w3c/webappsec-feature-policy/issues/296 [architecture] 
  - Proposal: Define new feature types https://github.com/w3c/webappsec-feature-policy/issues/282 [architecture] [document-policy] 



Pull requests
-------------
* w3c/permissions (+0/-1/💬6)
  1 pull requests received 6 new comments:
  - #155 Add ClipboardPermissionDescriptor (6 by dway123, marcoscaceres, saschanaz)
    https://github.com/w3c/permissions/pull/155 

  1 pull requests merged:
  - Update clipboard permissions as per Clipboard Specification.
    https://github.com/w3c/permissions/pull/209 

* w3c/webappsec-referrer-policy (+0/-1/💬0)
  1 pull requests merged:
  - Use request's referrer for more things, instead of request's client
    https://github.com/w3c/webappsec-referrer-policy/pull/135 

* w3c/webappsec-cspee (+1/-0/💬1)
  1 pull requests submitted:
  - Cancel navigation on invalid required CSP attribute (by antosart)
    https://github.com/w3c/webappsec-cspee/pull/11 

  1 pull requests received 1 new comments:
  - #11 Cancel navigation on invalid required CSP attribute (1 by antosart)
    https://github.com/w3c/webappsec-cspee/pull/11 

* w3c/webappsec-feature-policy (+1/-0/💬2)
  1 pull requests submitted:
  - Add clipboard-read and clipboard-write Feature Policies (by dway123)
    https://github.com/w3c/webappsec-feature-policy/pull/385 

  2 pull requests received 2 new comments:
  - #385 Add clipboard-read and clipboard-write Feature Policies (1 by annevk)
    https://github.com/w3c/webappsec-feature-policy/pull/385 
  - #304 Create focus-without-user-activation.md (1 by JSteunou)
    https://github.com/w3c/webappsec-feature-policy/pull/304 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c/webappsec
* https://github.com/w3c/webappsec-subresource-integrity
* https://github.com/w3c/webappsec-csp
* https://github.com/w3c/webappsec-mixed-content
* https://github.com/w3c/webappsec-upgrade-insecure-requests
* https://github.com/w3c/webappsec-credential-management
* https://github.com/w3c/permissions
* https://github.com/w3c/webappsec-referrer-policy
* https://github.com/w3c/webappsec-secure-contexts
* https://github.com/w3c/webappsec-clear-site-data
* https://github.com/w3c/webappsec-cowl
* https://github.com/w3c/webappsec-epr
* https://github.com/w3c/webappsec-suborigins
* https://github.com/w3c/webappsec-cspee
* https://github.com/w3c/webappsec-feature-policy
* https://github.com/w3c/webappsec-fetch-metadata
* https://github.com/WICG/trusted-types
* https://github.com/w3c/webappsec-unofficial-drafts
Received on Monday, 22 June 2020 17:00:14 UTC

This archive was generated by hypermail 2.4.0 : Monday, 22 June 2020 17:00:15 UTC