-
[3.4.3. Parse metadata](https://w3c.github.io/webappsec-subresource-integrity/#parse-metadata) describes an algorithm for integrity metadata parsing. We need to describe it in detail for every possibl…
baek9 updated
2 years ago
-
Since `clear-site-data` is "[only respected on responses fetched over network, and not those served by a service worker](https://w3c.github.io/webappsec-clear-site-data/#service-workers)", it can't be…
-
Both [§5.1.3. Create a New Credential](https://w3c.github.io/webauthn/#sctn-createCredential) and [§5.1.4. Use an Existing Credential to Make an Assertion](https://w3c.github.io/webauthn/#sctn-discove…
emlun updated
3 weeks ago
-
Subresource Integrity specifies to [get the strongest metadata from the set](https://www.w3.org/TR/SRI/#get-the-strongest-metadata-from-set) of supplied SRI constraints, but unfortunately forgot to me…
-
JavaScript is capable of loading other scripts (e.g. [static and dynamic import](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Statements/import)).
But it can also load modules li…
-
The implementation currently will fail your `get()` call if there is another pending call. This is easier to handle in Credentials Management because the algorithms here are ran in parallel, so we can…
npm1 updated
2 months ago
-
According to [MDN](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Permissions-Policy/picture-in-picture) the picture-in-picture directive has been supported in Chrome under the Feature-Poli…
-
## Request for Mozilla Position on an Emerging Web Specification
* Specification Title: Mixed Content Level 2
* Specification or proposal URL: https://w3c.github.io/webappsec-mixed-content/
* Bug…
-
Github does not change theme when I load this script. I am using safari with tamper monkey.
-
There's a great conversation here: https://github.com/npm/npm-explicit-installs/pull/12, I'd like to move over to this issue.
At sometime in the future, it would be wonderful to solve the problem of …