New `script text` associated data and associated mechanisms need adding to SVGScriptElement

w3c / trusted-types

A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.

https://w3c.github.io/trusted-types/dist/spec/

Other

586 stars 68 forks source link

New `script text` associated data and associated mechanisms need adding to SVGScriptElement #483

Open lukewarlow opened 3 months ago

lukewarlow commented 3 months ago

I know the script enforcement is currently in the HTML integrations section but we need to update it (possibly move the whole section?) to include coverage of the SVGScriptElement. At the very least it needs the new [[ScriptText]] slot to be handled by the parser script enforcement (see #252 )