Weekly github digest (WebAuthn) from W3C Webmaster via GitHub API on 2023-10-03 (public-webauthn@w3.org from October 2023)

From: W3C Webmaster via GitHub API <sysbot+gh@w3.org>
Date: Tue, 03 Oct 2023 17:00:44 +0000
To: public-webauthn@w3.org
Message-Id: <E1qnilI-000Gxm-Dy@uranus.w3.org>
Issues
------
* w3c/webauthn (+4/-1/💬5)
  4 issues created:
  - Spec is not specific enough about order of conditional UI autofill tokens (by MasterKale)
    https://github.com/w3c/webauthn/issues/1982 [type:editorial] 
  - Ambiguous instructions in the Android Key Attestation Statement Format verification procedure (by vanbukin)
    https://github.com/w3c/webauthn/issues/1980 [type:technical] 
  - Are notes in webauthn normative or informative? (by plehegar)
    https://github.com/w3c/webauthn/issues/1979 [type:editorial] 
  - Remove the [SameObject] attribute from PublicKeyCredential::authenticatorAttachment (by jschanck)
    https://github.com/w3c/webauthn/issues/1977 [type:technical] 

  4 issues received 5 new comments:
  - #1982 Spec is not specific enough about order of conditional UI autofill tokens (1 by MasterKale)
    https://github.com/w3c/webauthn/issues/1982 [type:editorial] 
  - #1980 Ambiguous instructions in the Android Key Attestation Statement Format verification procedure (1 by Kieun)
    https://github.com/w3c/webauthn/issues/1980 [type:technical] 
  - #1977 Remove the [SameObject] attribute from PublicKeyCredential::authenticatorAttachment (1 by emlun)
    https://github.com/w3c/webauthn/issues/1977 [type:technical] 
  - #1965 Code Injection vulnerability from client side (2 by emlun)
    https://github.com/w3c/webauthn/issues/1965 [type:technical] 

  1 issues closed:
  - The bike shed build is broken with the newest version https://github.com/w3c/webauthn/issues/1974 [type:editorial] 



Pull requests
-------------
* w3c/webauthn (+3/-2/💬4)
  3 pull requests submitted:
  - Update GitHub Actions workflow (by VoltrexKeyva)
    https://github.com/w3c/webauthn/pull/1983 
  - Remove [SameObject] attribute from PublicKeyCredential.authenticatorAttachment (by emlun)
    https://github.com/w3c/webauthn/pull/1981 [type:technical] [subtype:algorithms/WebIDL] 
  - Tweaks for bikeshed (by plehegar)
    https://github.com/w3c/webauthn/pull/1978 [type:editorial] 

  4 pull requests received 4 new comments:
  - #1972 Make the default value for the attestation member in assertion options be null (1 by Kieun)
    https://github.com/w3c/webauthn/pull/1972 [type:technical] 
  - #1969 Fix broken PublicKeyCredentialJSON WebIDL definition (1 by MasterKale)
    https://github.com/w3c/webauthn/pull/1969 
  - #1966 Specify what an unknown type credential descriptor being ignored means (1 by agl)
    https://github.com/w3c/webauthn/pull/1966 
  - #1953 Add packed attestation optional firmware version attribute (1 by emlun)
    https://github.com/w3c/webauthn/pull/1953 [type:technical] [type:editorial] 

  2 pull requests merged:
  - Add myself to the contributors
    https://github.com/w3c/webauthn/pull/1973 
  - Fix the bikeshed build
    https://github.com/w3c/webauthn/pull/1975 [type:editorial] 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c/webauthn


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Tuesday, 3 October 2023 17:00:46 UTC