Re: [w3c/browser-payment-api] throw if updateWith() is not trusted (#547) from Marcos Cáceres on 2017-06-09 (public-webpayments-specs@w3.org from June 2017)

From: Marcos Cáceres <notifications@github.com>
Date: Thu, 08 Jun 2017 23:33:45 -0700
To: w3c/browser-payment-api <browser-payment-api@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <w3c/browser-payment-api/pull/547/c307307707@github.com>

Oh no... I just read that mouse events can hack around this :) Removing 8771656. Let's see if I can come up with some evil tests using trusted events. 

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/browser-payment-api/pull/547#issuecomment-307307707

Received on Friday, 9 June 2017 06:34:44 UTC