ISSUE-34: Discuss use cases / risks of script access to CSP information, solicit specific public comment on this feature with FPWD

Discuss use cases / risks of script access to CSP information, solicit specific public comment on this feature with FPWD

State:
OPEN
Product:
CSP Level 3
Raised by:
Opened on:
2012-11-02
Description:
Proposal: remove read-only script APIs except: isActive, allowsInlineScript, allowsInlineStyle, allowsEval
Related Actions Items:
No related actions
Related emails:
No related emails

Related notes:


dveditz is very opposed to exposing list of reportURIs, should be good use case to justify this

Brad Hill, 25 Apr 2013, 17:59:42

Punting the whole DOM API to 1.2.

Mike West, 10 Feb 2014, 13:22:36

Display change log ATOM feed

Daniel Veditz <dveditz@mozilla.com>, Mike West <mkwst@google.com>, Chairs, Wendy Seltzer <wseltzer@w3.org>, Samuel Weiler <weiler@w3.org>, Staff Contacts
Tracker: documentation, (configuration for this group), originally developed by Dean Jackson, is developed and maintained by the Systems Team <w3t-sys@w3.org>.
$Id: 34.html,v 1.1 2020/01/17 08:52:29 carcone Exp $