ISSUE-34: Discuss use cases / risks of script access to CSP information, solicit specific public comment on this feature with FPWD
Discuss use cases / risks of script access to CSP information, solicit specific public comment on this feature with FPWD
- State:
- OPEN
- Product:
- CSP Level 3
- Raised by:
- Opened on:
- 2012-11-02
- Description:
- Proposal: remove read-only script APIs except: isActive, allowsInlineScript, allowsInlineStyle, allowsEval
- Related Actions Items:
- No related actions
- Related emails:
- No related emails
Related notes:
dveditz is very opposed to exposing list of reportURIs, should be good use case to justify this
Punting the whole DOM API to 1.2.
Mike West, 10 Feb 2014, 13:22:36Display change log