Web Application Security Working Group - Tools

 Mailing List

member-webappsec

public-webappsec

 Issue Tracking

Issue Dashboard

 Other

Minutes through ~2017

GitHub repositories

This list includes active GitHub repositories maintained by this group. To add a repository see the w3c.json documentation.

• w3c/permissions
  Permissions API
  Website
• w3c/permissions-registry
  Registry of known powerful features in the web platform.
  Website
• w3c/webappsec
  Web Application Security Working Group repo
  Website
• w3c/webappsec-change-password-url
  A Well-Known URL for Changing Passwords
  Website
• w3c/webappsec-clear-site-data
  WebAppSec Clear Site Data
  Website
• w3c/webappsec-cors-for-developers
  CORS for developers
  Website
• w3c/webappsec-cowl
  WebAppSec Confinement Origin Web Labels
  Website
• w3c/webappsec-credential-management
  WebAppSec Credential Management
  Website
• w3c/webappsec-csp
  WebAppSec Content Security Policy
  Website
• w3c/webappsec-cspee
  Content Security Policy: Embedded Enforcement
  Website
• w3c/webappsec-fetch-metadata
  Fetch Metadata
  Website
• w3c/webappsec-mixed-content
  WebAppSec Mixed Content
  Website
• w3c/webappsec-permissions-policy
  A mechanism to selectively enable and disable browser features and APIs
  Website
• w3c/webappsec-post-spectre-webdev
  Post-Spectre Web Development
  Website
• w3c/webappsec-referrer-policy
  WebAppSec Referrer Policy
  Website
• w3c/webappsec-secure-contexts
  WebAppSec Secure Contexts
  Website
• w3c/webappsec-suborigins
  Suborigins
  Website
• w3c/webappsec-subresource-integrity
  WebAppSec Subresource Integrity
  Website
• w3c/webappsec-trusted-types
  A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
  Website
• w3c/webappsec-uisecurity
  User Interface Security and the Visibility API
  Website
• w3c/webappsec-upgrade-insecure-requests
  WebAppSec Upgrade Insecure Requests
  Website
• w3c/webcrypto
  The W3C Web Cryptography API
  Website