Weekly github digest (WebAppSec specs) from W3C Webmaster via GitHub API on 2021-11-15 (public-webappsec@w3.org from November 2021)

From: W3C Webmaster via GitHub API <sysbot+gh@w3.org>
Date: Mon, 15 Nov 2021 17:00:42 +0000
To: public-webappsec@w3.org
Message-Id: <E1mmfLW-0000Jp-2G@uranus.w3.org>
Issues
------
* w3c/webappsec (+0/-1/💬1)
  1 issues received 1 new comments:
  - #532 Content-Security-Policy didn't get into the IANA message header registry (1 by mikewest)
    https://github.com/w3c/webappsec/issues/532 

  1 issues closed:
  - Content-Security-Policy didn't get into the IANA message header registry https://github.com/w3c/webappsec/issues/532 

* w3c/webappsec-csp (+1/-1/💬2)
  1 issues created:
  - should-block-response doesn't forward arguments (by annevk)
    https://github.com/w3c/webappsec-csp/issues/524 

  2 issues received 2 new comments:
  - #489 Specify sanitizing algorithm of blockedURL, documentURL, sourceFile beyond fragment exclusion (1 by ArthurSonzogni)
    https://github.com/w3c/webappsec-csp/issues/489 
  - #404 CSP HTTP headers not registered with IANA (1 by mikewest)
    https://github.com/w3c/webappsec-csp/issues/404 

  1 issues closed:
  - CSP HTTP headers not registered with IANA https://github.com/w3c/webappsec-csp/issues/404 

* w3c/webappsec-credential-management (+2/-1/💬0)
  2 issues created:
  - Do not reference EventLoop objects from "In parallel" sections (by nsatragno)
    https://github.com/w3c/webappsec-credential-management/issues/177 
  - Fix the "aborted flag" reference (by nsatragno)
    https://github.com/w3c/webappsec-credential-management/issues/175 

  1 issues closed:
  - Fix the "aborted flag" reference https://github.com/w3c/webappsec-credential-management/issues/175 

* w3c/permissions (+3/-2/💬11)
  3 issues created:
  - "speaker-selection" (by miketaylr)
    https://github.com/w3c/permissions/issues/320 
  - "screen-wake-lock", (by miketaylr)
    https://github.com/w3c/permissions/issues/319 
  - "bluetooth", (by miketaylr)
    https://github.com/w3c/permissions/issues/317 

  4 issues received 11 new comments:
  - #319 Ensure "screen-wake-lock" permission is integrated in Screen Wake Lock API (1 by miketaylr)
    https://github.com/w3c/permissions/issues/319 
  - #317 Ensure "bluetooth" is integrated into Web Bluetooth spec (5 by marcoscaceres, miketaylr)
    https://github.com/w3c/permissions/issues/317 
  - #314 Proposals: Drop "Powerful features registry" and PermissionName enum (3 by dveditz, marcoscaceres, miketaylr)
    https://github.com/w3c/permissions/issues/314 
  - #308 Ensure "background-sync" is integrated into Web Background Synchronization spec (2 by miketaylr)
    https://github.com/w3c/permissions/issues/308 

  2 issues closed:
  - Ensure "background-sync" is integrated into Web Background Synchronization spec https://github.com/w3c/permissions/issues/308 
  - Ensure "bluetooth" is integrated into Web Bluetooth spec https://github.com/w3c/permissions/issues/317 

* w3c/webappsec-referrer-policy (+3/-2/💬9)
  3 issues created:
  - Question in relation to Referrer-Policy header and its relation with link rel attribute (by evilaliv3)
    https://github.com/w3c/webappsec-referrer-policy/issues/159 
  - Omit referrers on cross-origin requests from an RFC7686 address (by fmarier)
    https://github.com/w3c/webappsec-referrer-policy/issues/155 
  - Bikeshed (remote) returns an error on main branch (by fmarier)
    https://github.com/w3c/webappsec-referrer-policy/issues/154 

  3 issues received 9 new comments:
  - #159 Question in relation to Referrer-Policy header and its relation with link rel attribute (4 by annevk, evilaliv3, hackademix)
    https://github.com/w3c/webappsec-referrer-policy/issues/159 
  - #155 Omit referrers on cross-origin requests from an RFC7686 address (4 by annevk, fmarier, mikewest)
    https://github.com/w3c/webappsec-referrer-policy/issues/155 
  - #154 Bikeshed (remote) returns an error on main branch (1 by annevk)
    https://github.com/w3c/webappsec-referrer-policy/issues/154 

  2 issues closed:
  - Question in relation to Referrer-Policy header and its relation with link rel attribute https://github.com/w3c/webappsec-referrer-policy/issues/159 
  - Bikeshed (remote) returns an error on main branch https://github.com/w3c/webappsec-referrer-policy/issues/154 

* w3c/webappsec-permissions-policy (+0/-0/💬1)
  1 issues received 1 new comments:
  - #331 HTTP headers not registered with IANA (1 by SmashManiac)
    https://github.com/w3c/webappsec-permissions-policy/issues/331 

* w3c/webappsec-trusted-types (+0/-0/💬2)
  1 issues received 2 new comments:
  - #347 Create [TrustedTypes].fromLiteral method (2 by koto, shhnjk)
    https://github.com/w3c/webappsec-trusted-types/issues/347 



Pull requests
-------------
* w3c/webappsec-csp (+2/-0/💬4)
  2 pull requests submitted:
  - Remove calleeRealm from EnsureCSPDoesNotBlockWasmByteCompilation (by fgmccabe)
    https://github.com/w3c/webappsec-csp/pull/526 
  - Remove calleeRealm from EnsureCSPDoesNotBlockWasmByteCompilation (by fgmccabe)
    https://github.com/w3c/webappsec-csp/pull/525 

  2 pull requests received 4 new comments:
  - #526 Remove calleeRealm from EnsureCSPDoesNotBlockWasmByteCompilation (3 by annevk, fgmccabe)
    https://github.com/w3c/webappsec-csp/pull/526 
  - #457 Introduce 'webrtc' as a simple on/off switch (1 by zenhack)
    https://github.com/w3c/webappsec-csp/pull/457 

* w3c/webappsec-credential-management (+1/-1/💬2)
  1 pull requests submitted:
  - Reject aborted operations with the abort reason (by nsatragno)
    https://github.com/w3c/webappsec-credential-management/pull/176 

  1 pull requests received 2 new comments:
  - #155 Add "conditional mediation" (2 by equalsJeffH, nsatragno)
    https://github.com/w3c/webappsec-credential-management/pull/155 [enhancement] [CREDENTIAL] 

  1 pull requests merged:
  - Reject aborted operations with the abort reason
    https://github.com/w3c/webappsec-credential-management/pull/176 

* w3c/permissions (+2/-3/💬0)
  2 pull requests submitted:
  - Editorial: relocate background-sync and bluetooth (by miketaylr)
    https://github.com/w3c/permissions/pull/318 
  - Editorial: relocate midi & ambient-light-sensor powerful features (by miketaylr)
    https://github.com/w3c/permissions/pull/316 

  3 pull requests merged:
  - Editorial: relocate background-sync and bluetooth
    https://github.com/w3c/permissions/pull/318 
  - Relocate screen-capture
    https://github.com/w3c/permissions/pull/312 
  - Editorial: relocate midi & ambient-light-sensor powerful features
    https://github.com/w3c/permissions/pull/316 

* w3c/webappsec-referrer-policy (+3/-1/💬5)
  3 pull requests submitted:
  - Update GitHub workflows to use main branch (by domfarolino)
    https://github.com/w3c/webappsec-referrer-policy/pull/158 
  - Fix policy container references in build (by antosart)
    https://github.com/w3c/webappsec-referrer-policy/pull/157 
  - Omit referrers on cross-origin requests from an .onion address (by fmarier)
    https://github.com/w3c/webappsec-referrer-policy/pull/156 

  3 pull requests received 5 new comments:
  - #158 Update GitHub workflows to use main branch (1 by domfarolino)
    https://github.com/w3c/webappsec-referrer-policy/pull/158 
  - #157 Fix policy container references in build (2 by antosart, domfarolino)
    https://github.com/w3c/webappsec-referrer-policy/pull/157 
  - #156 Omit referrers on cross-origin requests from an .onion address (2 by annevk, fmarier)
    https://github.com/w3c/webappsec-referrer-policy/pull/156 

  1 pull requests merged:
  - Fix policy container references in build
    https://github.com/w3c/webappsec-referrer-policy/pull/157 

* w3c/webappsec-permissions-policy (+0/-0/💬1)
  1 pull requests received 1 new comments:
  - #437 Add interest-cohort to list of Experimental Features (1 by gapple)
    https://github.com/w3c/webappsec-permissions-policy/pull/437 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c/webappsec
* https://github.com/w3c/webappsec-subresource-integrity
* https://github.com/w3c/webappsec-csp
* https://github.com/w3c/webappsec-mixed-content
* https://github.com/w3c/webappsec-upgrade-insecure-requests
* https://github.com/w3c/webappsec-credential-management
* https://github.com/w3c/permissions
* https://github.com/w3c/webappsec-referrer-policy
* https://github.com/w3c/webappsec-secure-contexts
* https://github.com/w3c/webappsec-clear-site-data
* https://github.com/w3c/webappsec-cowl
* https://github.com/w3c/webappsec-epr
* https://github.com/w3c/webappsec-suborigins
* https://github.com/w3c/webappsec-cspee
* https://github.com/w3c/webappsec-permissions-policy
* https://github.com/w3c/webappsec-fetch-metadata
* https://github.com/w3c/webappsec-trusted-types
* https://github.com/w3c/webappsec-change-password-url
* https://github.com/w3c/webappsec-post-spectre-webdev


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Monday, 15 November 2021 17:00:45 UTC