CfC to adopt "Post-Spectre Web Development" as a Note-track document from Daniel Veditz on 2021-02-25 (public-webappsec@w3.org from February 2021)

From: Daniel Veditz <dveditz@mozilla.com>
Date: Thu, 25 Feb 2021 11:43:03 -0800
To: WebAppSec WG <public-webappsec@w3.org>
Message-ID: <CADYDTCD8MrN1GQJZr5zYEWP6+agoYZtqCS369B8qM_Sskxej6w@mail.gmail.com>

Call for Consensus

Mike has written up a set of post-Spectre mitigation recommendations for
web developers at https://mikewest.github.io/post-spectre-webdev/

This is a Call for Consensus to adopt that work as a draft and finish it as
a Note-track document in the Web Application Security Working Group. A Note
is a non-normative document, and in this case is relevant to the work WASWG
is doing because it offers recommendations and best practices for using the
features we've specified in this group and related features in Fetch/HTML
in various web application scenarios.

Please reply to this thread, yay or nay, before Monday March 8, and we'll
discuss it on our next call March 16.

-Dan Veditz

Received on Thursday, 25 February 2021 19:43:43 UTC