This is an archived snapshot of W3C's public bugzilla bug tracker, decommissioned in April 2019. Please see the home page for more details.
http://w3c-test.org/web-platform-tests/master/workers/Worker_cross_origin_security_err.htm has the wrong pass condition. [[ If the scheme component of worker URL is not "data", and the origin of worker URL is not the same as the origin specified by the incumbent settings object, then throw a SecurityError exception and abort these steps. ]] http://www.whatwg.org/specs/web-apps/current-work/multipage/workers.html#dom-worker
This bug is now GitHub Issue 475 https://github.com/w3c/web-platform-tests/issues/475 so closing as DUP.