Weekly github digest (WebAppSec specs)

Issues
------
* w3c/webappsec (+1/-0/💬0)
  1 issues created:
  - Planning 2024-06-19 (by dveditz)
    https://github.com/w3c/webappsec/issues/652 

* w3c/webappsec-csp (+2/-1/💬0)
  2 issues created:
  - Qqqq (by Nik12325)
    https://github.com/w3c/webappsec-csp/issues/661 
  - Request's initiator can't be "fetch" (by zcorpan)
    https://github.com/w3c/webappsec-csp/issues/660 

  1 issues closed:
  - Qqqq https://github.com/w3c/webappsec-csp/issues/661 

* w3c/webappsec-trusted-types (+0/-1/💬0)
  1 issues closed:
  - `execCommand` spec won't work https://github.com/w3c/trusted-types/issues/500 [spec] 



Pull requests
-------------
* w3c/webappsec-csp (+1/-0/💬1)
  1 pull requests submitted:
  - Upstream Trusted Types enforcement in EnsureCSPDoesNotBlockStringCompilation (by lukewarlow)
    https://github.com/w3c/webappsec-csp/pull/659 

  1 pull requests received 1 new comments:
  - #621 [editorial] Make algorithm headers clickable (1 by oasissbasinessltd)
    https://github.com/w3c/webappsec-csp/pull/621 

* w3c/webappsec-fetch-metadata (+0/-0/💬1)
  1 pull requests received 1 new comments:
  - #89 Define `Sec-Fetch-Frame-Ancestors`. (1 by johannhof)
    https://github.com/w3c/webappsec-fetch-metadata/pull/89 

* w3c/webappsec-trusted-types (+3/-3/💬3)
  3 pull requests submitted:
  - Replace timer functions section with upstream PR link (by lukewarlow)
    https://github.com/w3c/trusted-types/pull/516 
  - Remove links to merged upstream PRs (by lukewarlow)
    https://github.com/w3c/trusted-types/pull/515 
  - Replace EnsureCSPDoesNotBlockStringCompilation section with link to upstream PR (by lukewarlow)
    https://github.com/w3c/trusted-types/pull/514 

  2 pull requests received 3 new comments:
  - #514 Replace EnsureCSPDoesNotBlockStringCompilation section with link to upstream PR (2 by koto, lukewarlow)
    https://github.com/w3c/trusted-types/pull/514 
  - #473 Add new `trusted-eval` source expression to 'script-src' directive. (1 by lukewarlow)
    https://github.com/w3c/trusted-types/pull/473 [spec] 

  3 pull requests merged:
  - Replace timer functions section with upstream PR link
    https://github.com/w3c/trusted-types/pull/516 
  - Replace EnsureCSPDoesNotBlockStringCompilation section with link to upstream PR
    https://github.com/w3c/trusted-types/pull/514 
  - Remove links to merged upstream PRs
    https://github.com/w3c/trusted-types/pull/515 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c/webappsec
* https://github.com/w3c/webappsec-subresource-integrity
* https://github.com/w3c/webappsec-csp
* https://github.com/w3c/webappsec-mixed-content
* https://github.com/w3c/webappsec-upgrade-insecure-requests
* https://github.com/w3c/webappsec-credential-management
* https://github.com/w3c/permissions
* https://github.com/w3c/permissions-registry
* https://github.com/w3c/webappsec-referrer-policy
* https://github.com/w3c/webappsec-secure-contexts
* https://github.com/w3c/webappsec-clear-site-data
* https://github.com/w3c/webappsec-cowl
* https://github.com/w3c/webappsec-epr
* https://github.com/w3c/webappsec-suborigins
* https://github.com/w3c/webappsec-cspee
* https://github.com/w3c/webappsec-permissions-policy
* https://github.com/w3c/webappsec-fetch-metadata
* https://github.com/w3c/webappsec-trusted-types
* https://github.com/w3c/webappsec-change-password-url
* https://github.com/w3c/webappsec-post-spectre-webdev


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Monday, 20 May 2024 17:00:21 UTC