-
Tracking updates of www.twitch.tv
-
### Description
Trusted Types enable writing web applications that are free from DOM-Based [Cross-Site-Scripting](http://go/xss) (XSS), the most prevalent web application vulnerability.
DOM-Based …
-
### Pitch
I believe it would be a good idea to have a Privacy Policy Generator on JoinMastodon.org for the thousands of current servers and the many thousands more that will follow.
This post ment…
-
### Problem Statement
Currently, we do not support auto-gen in generated VAPs from CEL policies. So, the generated VAP from a CEL policy that matches only on pods, applies to pods only.
If we h…
-
It'd be fairly easy to use [Salvation](https://github.com/shapesecurity/salvation) (already being used to check CSP parsing errors) to implement enforcement of CSP on the following resources. Salvatio…
-
Runners currently execute user code directly on the same host that they run on. In k8s this is not terrible, but ideally FTL would execute user code inside a VM to completely isolate it. This would al…
-
The raising of #2689 has started the discussion around the adoption of a code of conduct. The initial proposal is for adoption of https://www.contributor-covenant.org/version/1/4/code-of-conduct. Task…
-
Hi Marc,
I'm currently testing your `authentication_milter` which is using `Mail::BIMI`. But I see many BIMI implementations of newsletters which don't enforce DMARC on the org-domain. For example …
-
Apple's upcoming policy enforcement of ITMS-90809 (see https://developer.apple.com/news/?id=12232019b) requires that apps can no longer depend on the UIWebView component. The main iOS dependency for t…
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Current Behavior
I setup a simple test case following the [documentation ](https://github.com/sventorben/keycl…