Open uazo opened 1 month ago
Yes
no, but there is a issue https://issues.chromium.org/issues/40737536
Currently, seems that blink code allows communication between third-party iframes and top frames, even cross-partition, even with an opaque source.
as stated by the chromium team:
This enables cross-site communication that links users' identities across sites and perpetuates cross-site tracking.
it is necessary to understand what has been done and what needs to be changed.
n/a
step 1:
Preliminary checklist
Is your feature request related to privacy?
Yes
Is there a patch available for this feature somewhere?
no, but there is a issue https://issues.chromium.org/issues/40737536
Describe the solution you would like
Currently, seems that blink code allows communication between third-party iframes and top frames, even cross-partition, even with an opaque source.
as stated by the chromium team:
it is necessary to understand what has been done and what needs to be changed.
Describe alternatives you have considered
n/a