Re: Web app security - Caja demo from Dan Connolly on 2009-05-28 (www-tag@w3.org from May 2009)

From: Dan Connolly <connolly@w3.org>
Date: Thu, 28 May 2009 11:02:35 -0500
To: Jonathan Rees <jar@creativecommons.org>
Cc: "www-tag@w3.org" <www-tag@w3.org>
Message-Id: <1243526555.5864.7817.camel@pav.lan>

The "use strict" stuff in ES5 evidently
borrows from Caja and other secure javascript
projects.

A write-up and a video/talk showed up
on my radar this week:

  ECMAScript 5 Strict Mode, JSON, and More
  http://ejohn.org/blog/ecmascript-5-strict-mode-json-and-more/

  Changes to JavaScript, Part 1: EcmaScript 5
  http://www.youtube.com/watch?v=Kq4FpMe6cRs

On Wed, 2009-05-27 at 18:30 -0400, Jonathan Rees wrote:
> This message is regarding ACTION-204
> http://www.w3.org/2001/tag/group/track/actions/204
> In case you lost track, this thread started back in 2007, with
> http://www.w3.org/mid/1191513393.16975.610.camel@pav ...
> 
> Anyhow, I did meet with Mark S Miller and others on the Caja project
> at Google in March.
> I intend to report more tomorrow (item 6 on the agenda), but thought
> I'd give you the following
> amusing page for homework. It pretty much speaks for itself:
> 
> http://code.google.com/p/google-caja/  - Caja demo
-- 
Dan Connolly, W3C http://www.w3.org/People/Connolly/
gpg D3C2 887B 0F92 6005 C541  0875 0F91 96DE 6E52 C29E

Received on Thursday, 28 May 2009 16:02:42 UTC