-
Notifications
You must be signed in to change notification settings - Fork 2
Issues: w3c/security-review
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Prevent currentScript from being overridden on document via name=''
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
tracker
Security is following a discussion, but doesn't require resolution.
#234
opened Oct 9, 2024 by
w3cbot
Include details of SVG-as-Image and Canvas origin-clean
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
tracker
Security is following a discussion, but doesn't require resolution.
whatwg
https://whatwg.org/
#231
opened Sep 25, 2024 by
w3cbot
[wg/rdf-star] RDF-star Group Charter
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
tracker
Security is following a discussion, but doesn't require resolution.
#223
opened Jun 19, 2024 by
w3cbot
joint work on rights-respecting digital credentials
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
tracker
Security is following a discussion, but doesn't require resolution.
#218
opened May 18, 2024 by
w3cbot
Should showPicker() consume user activation?
close?
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
tracker
Security is following a discussion, but doesn't require resolution.
whatwg
https://whatwg.org/
#215
opened Jan 25, 2024 by
w3cbot
Implement dangling markup injection mitigation
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
tracker
Security is following a discussion, but doesn't require resolution.
whatwg
https://whatwg.org/
#214
opened Jan 24, 2024 by
w3cbot
Interactions of Content-Disposition with CSP-FA/XFO and Status Codes
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
tracker
Security is following a discussion, but doesn't require resolution.
whatwg
https://whatwg.org/
#212
opened Sep 26, 2023 by
w3cbot
Which status codes are allowed for various tags such as script, video, audio?
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
tracker
Security is following a discussion, but doesn't require resolution.
whatwg
https://whatwg.org/
#211
opened Sep 26, 2023 by
w3cbot
Framebust out of webviews
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
tracker
Security is following a discussion, but doesn't require resolution.
#166
opened Aug 14, 2022 by
w3cbot
WebAssembly 2022 charter
close?
needs-resolution
Security expects this item to be resolved to their satisfaction.
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
#151
opened Apr 21, 2022 by
w3cbot
Verifiable Credentials WG Rechartering
close?
needs-resolution
Security expects this item to be resolved to their satisfaction.
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
#145
opened Jan 28, 2022 by
w3cbot
HTML WG 2021
close?
needs-resolution
Security expects this item to be resolved to their satisfaction.
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
#115
opened Aug 31, 2021 by
w3cbot
Consider allowing downloads by user interaction within a sandboxed iframe
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
tracker
Security is following a discussion, but doesn't require resolution.
whatwg
https://whatwg.org/
#38
opened May 7, 2020 by
w3cbot
ProTip!
Add no:assignee to see everything that’s not assigned.