- From: NDevTK via GitHub <sysbot+gh@w3.org>
- Date: Tue, 26 Apr 2022 12:19:33 +0000
- To: public-webrtc-logs@w3.org
Only asking on navigation might mean attacks stuff like .focus() .close() .moveBy .moveTo may be abused to show information the user could not see such attacks seem to need a entire screen recording but thats strangely the first option on chrome. And it also would not affect information that is shown later like notifications (unless a confirmation API existed) or allow for redacting just parts of the page like hiding password or API keys that are set to be visible. However having confirmation on navigation (maybe not for going to a different page initiated by the same window) would probably be less work for web developers and would need to exist as an opt in alternative for websites that try to abuse knowing the state. -- GitHub Notification of comment by NDevTK Please view or discuss this issue at https://github.com/w3c/mediacapture-screen-share/issues/220#issuecomment-1109726189 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Tuesday, 26 April 2022 12:19:35 UTC