15:52:18 RRSAgent has joined #webappsec 15:52:18 logging to http://www.w3.org/2017/08/16-webappsec-irc 15:52:47 wseltzer has changed the topic to: WebAppSec 16 August, webex 643 678 745 +1-617-324-0000 15:56:45 ckerschb__ has joined #webappsec 16:00:33 zakim, clear agenda 16:00:33 agenda cleared 16:00:38 present= 16:00:40 present+ wseltzer 16:01:08 present+ dveditz 16:01:38 present+ terri 16:02:18 present+ ckerschb__ 16:03:04 zakim, who is here? 16:03:04 Present: wseltzer, dveditz, terri, ckerschb__ 16:03:06 On IRC I see ckerschb__, RRSAgent, Zakim, timbl, yoav, Agent_Sm1th_BR, trackbot, Jb, mounir, terri, jyasskin, mkwst, slightlyoff, Domenic, ojan, jkt, adrianba, sangwhan, lfaraone, 16:03:06 ... battre, hadleybeeman, jochen___, crakrjak, tobie, dveditz, timeless, MattN, gszathmari, jcj_moz, Josh_Soref, dbaron, Mek_, jww, wseltzer 16:06:18 dveditz: I wanted to talk about status of mixed contet and referrer policy, but we don't have the editors 16:06:57 Topic: Minutes approval 16:07:34 https://www.w3.org/2017/06/21-webappsec-minutes.html 16:08:04 dveditz: hearing no objections, approved 16:08:10 Topic: News 16:08:23 dveditz: TPAC is coming up 16:08:34 ... pre-registration ends Oct. 8, and then rates go up 16:08:51 https://www.w3.org/2017/11/TPAC/Overview.html 16:09:00 s/Oct. 8/Oct. 6/ 16:09:05 6-10 November 2017 16:09:21 dveditz: TPAC is Nov 6-10; WebAppSec is scheduled for Monday and Tuesday 16:09:24 https://www.w3.org/2017/11/TPAC/schedule.html 16:11:16 Topic: Obsoleting CORS 16:11:53 dveditz: I raised on the list obsoleting CORS. The spec is old and doesn't reflect what browsers actually do 16:12:04 ... ongoing work is in Fetch 16:12:25 ... so it's not useful to have CORS sitting around 16:12:35 ... mark as Obsolete and point to replacement 16:12:41 ... to serve implementors better 16:13:33 ... only reply was mnot asking about CORS for Developers 16:13:39 ... I'd like to get Brad's feedback 16:14:13 ... I'll call for consensus on this call, and then announce on list 16:14:26 q+ 16:15:19 q- 16:15:31 dveditz: any objection to obsoleting CORS? 16:15:37 terri: sounds reasonable to me 16:15:48 PROPOSED: Obsolete CORS 16:16:00 RESOLVED: Obsolete CORS 16:16:08 dveditz: I'll announce that decision to the list 16:16:41 Topic: AOB 16:16:59 dveditz: Terri asked about testing 16:20:23 timbl has joined #webappsec 16:20:41 terri: it would be good to have a current testing priority list 16:21:35 [adjourned] 16:21:38 rrsagent, make logs public 16:21:55 ckerschb__ has left #webappsec 16:22:08 rrsagent, draft minutes 16:22:08 I have made the request to generate http://www.w3.org/2017/08/16-webappsec-minutes.html wseltzer 16:22:51 rrsagent, draft minutes 16:22:51 I have made the request to generate http://www.w3.org/2017/08/16-webappsec-minutes.html wseltzer 16:23:21 chair: dveditz 16:23:27 Meeting: Web Application Security WG 16:23:32 rrsagent, draft minutes 16:23:32 I have made the request to generate http://www.w3.org/2017/08/16-webappsec-minutes.html wseltzer 18:17:30 Zakim has left #webappsec 19:09:18 timbl has joined #webappsec 21:16:51 yoav has joined #webappsec 22:35:34 timbl has joined #webappsec