Explainer: IsLoggedIn (in preparation for TPAC) from John Wilander on 2019-09-11 (public-webappsec@w3.org from September 2019)
From: John Wilander <wilander@apple.com> Date: Wed, 11 Sep 2019 15:09:28 -0700 To: "public-webappsec@w3.org" <public-webappsec@w3.org> Message-id: <EDD6C2F4-2022-44C5-BBB9-08EF183FE43B@apple.com> Hi WebAppSec! TPAC is around the corner and one of the agenda items is "Login API” with my name attached to it. Below is an explainer of what we want to achieve. I think Wendy is working on an “Unofficial
GitHub - mikewest/tc39-proposal-literals: Literals could be different than non-literals.
HTML's DOM offers a number of mechanisms to turn arbitrary strings into markup (.innerHTML = ...) or code (scriptEl.innerText = ..., el.onclick = ..., etc). Each of these mechanisms can serve as an XSS sink, giving an attacker the ability to feed code into a context that wasn't expecting it, leading to a class of DOM-based XSS attacks that we'd very much like to avoid. One way of addressing this i
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
処理を実行中です
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
GitHub - krgovind/first-party-sets
GitHub - privacycg/private-click-measurement: Private Click Measurement
webappsec-mixed-content/proposed-level-2-roadmap.md at master · mikewest/webappsec-mixed-content
GitHub - WICG/gesture-delegation: Gesture Delegation API proposal
Intent to Ship: Long Task API - Google Groups
