Open xyaoinum opened 1 year ago
twiss
commented
1 year ago Hey :wave: Apologies for the delay. Personally I don't see an issue with this, though it might be good to bring it up in the WebAppSec WG, to see if anyone else sees any concerns. (I can do so at some point, unless you want to do so?)
annevk
commented
1 year ago A problem with ShadowRealm exposure might be that this feature is conditional upon secure contexts. Perhaps that ought to be considered separately from worklets.
Also, do we have use cases for all worklets or just this one?
cc @Ms2ger
Is there any concern exposing Crypto/SubtleCrypto to all scopes, or all Worklet scopes, rather than just (Window, Worker)?
This is a desirable feature for the shared storage worklet (e.g. will make the aggregation key generation process easier).