Skip to content

Issues: w3c/security-review

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
16 Open 0 Closed
16 Open 0 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Prevent currentScript from being overridden on document via name='' pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution.
#234 opened Oct 9, 2024 by w3cbot
Include details of SVG-as-Image and Canvas origin-clean pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution. whatwg https://whatwg.org/
#231 opened Sep 25, 2024 by w3cbot
[wg/rdf-star] RDF-star Group Charter pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution.
#223 opened Jun 19, 2024 by w3cbot
joint work on rights-respecting digital credentials pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution.
#218 opened May 18, 2024 by w3cbot
Should showPicker() consume user activation? close? pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution. whatwg https://whatwg.org/
#215 opened Jan 25, 2024 by w3cbot
Implement dangling markup injection mitigation pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution. whatwg https://whatwg.org/
#214 opened Jan 24, 2024 by w3cbot
Interactions of Content-Disposition with CSP-FA/XFO and Status Codes pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution. whatwg https://whatwg.org/
#212 opened Sep 26, 2023 by w3cbot
Which status codes are allowed for various tags such as script, video, audio? pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution. whatwg https://whatwg.org/
#211 opened Sep 26, 2023 by w3cbot
Web Application Security WG 2023 close? pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution.
#200 opened Sep 7, 2023 by w3cbot
Web Identity Credential Working Group Charter close? pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution.
#199 opened Sep 7, 2023 by w3cbot
Framebust out of webviews pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution.
#166 opened Aug 14, 2022 by w3cbot
WebAssembly 2022 charter close? needs-resolution Security expects this item to be resolved to their satisfaction. pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/
#151 opened Apr 21, 2022 by w3cbot
Verifiable Credentials WG Rechartering close? needs-resolution Security expects this item to be resolved to their satisfaction. pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/
#145 opened Jan 28, 2022 by w3cbot
HTML WG 2021 close? needs-resolution Security expects this item to be resolved to their satisfaction. pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/
#115 opened Aug 31, 2021 by w3cbot
Escape "<" and ">" in attributes pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution. whatwg https://whatwg.org/
#82 opened Dec 19, 2020 by w3cbot
Consider allowing downloads by user interaction within a sandboxed iframe pending Issue created by the tracker tool and may need to be refined s:html https://html.spec.whatwg.org/multipage/ tracker Security is following a discussion, but doesn't require resolution. whatwg https://whatwg.org/
#38 opened May 7, 2020 by w3cbot
ProTip! Add no:assignee to see everything that’s not assigned.