Open mbrodesser-Igalia opened 3 days ago
See e.g. https://jsfiddle.net/fhrpo2zj/2/.
The spec covers this, since "type" in [1] may be "form-submission" and [2] is fully exercised for that type.
CC @lukewarlow, @otherdaniel
[1] https://w3c.github.io/webappsec-csp/#should-block-navigation-request [2] https://w3c.github.io/trusted-types/dist/spec/#require-trusted-types-for-pre-navigation-check
Adding test is WIP at https://bugzilla.mozilla.org/show_bug.cgi?id=1921008.
See e.g. https://jsfiddle.net/fhrpo2zj/2/.
The spec covers this, since "type" in [1] may be "form-submission" and [2] is fully exercised for that type.
CC @lukewarlow, @otherdaniel
[1] https://w3c.github.io/webappsec-csp/#should-block-navigation-request [2] https://w3c.github.io/trusted-types/dist/spec/#require-trusted-types-for-pre-navigation-check