Tracker summary for Brad Hill
Web Application Security Working Group Tracker
Open Actions
There are 13 open actions.
Open Issues
There are 5 open issues listed in the system.
ID | State | Title | Raised on | Product | Open Actions |
---|---|---|---|---|---|
ISSUE-68 401 prompting by subresources |
OPEN | How to manage 401 phishing prompts by subresources | 2014-10-27 | CSP Level 3 | 0 |
ISSUE-70 Using ni:/// as CSP source |
RAISED | Investigate using ni:/// as a CSP source expression | 2014-11-04 | CSP Level 3 | 0 |
ISSUE-71 JSONP directives |
RAISED | Consider directives in CSP Level 3 to reduce attack surface of legacy JSONP interaces | 2014-11-04 | CSP Level 3 | 0 |
ISSUE-73 CSP path matching |
RAISED | Consider allowing relative paths (to 'self') in source productions | 2014-12-30 | CSP Level 3 | 0 |
ISSUE-74 plugin-types 'none' |
RAISED | allow explicitly setting the 'none' keyword source for plugin-type directive | 2014-12-30 | CSP Level 3 | 0 |