-
As mentioned in https://github.com/publicsuffix/list/pull/1872#issuecomment-1863614188
Multiple `psl` libraries share the same bug while handling wildcards.
> I went over all the FOSS implementa…
-
This is a proposal to solve some of the use cases from issue #333
# The Problem
FedCM makes a credentialed fetch to IdPs to gather the user’s accounts before prompting the user to select one …
-
Right now, for a configURL of `https://accounts.idp.example/config.json` it requires the IdP host a file at `https://idp.example/.well-known/web-identity`. As mentioned in other discussions, this can …
-
a DOHNS record needs to be
1] dnssec signed
2] for something more specific than an eTLD
what's the rationale for 2 if we have 1?
I can think of 2 reasons to remove it
1] dealing with the …
-
Consider adding to `httpResponseStatus` in confirmation token redemption payload
-
The [public suffix list](https://publicsuffix.org/) is a database of effective top-level domains (eTLD), which are the public suffix of URLs. This database is included in browsers (at least by Firefox…
-
Domain Spoofing (aka Domain Laundering) is a form of Sophisticated Invalid Traffic (SIVT) in which a false representation is made about the domain associated with an ad impression. Two examples are wh…
-
In the display state the registrable domain (effective TLD + 1) should be shown in the URL bar. The domain should be shown in a different color from other url components. The registrable domain has to…
-
I tried to compile it under Go 1.7rc1 and the compiler never
completed.
See https://github.com/golang/go/issues/16407 - there's a suggestion
by @josharian for a possible way to work around the issue
…
-
We should add an option (per eTLD) to reject destinations that are not `.onion` domains if they are using TCP port 80. This has the effect of guaranteeing that the eTLD will use a secure origin for H…