WICG / csp-next
A Modest Content Security Proposal
☆40Updated 3 years ago
Alternatives and similar repositories for csp-next:
Users that are interested in csp-next are comparing it to the libraries listed below
- This is both a terrible and wonderful idea.☆11Updated 5 years ago
- Secure Contexts, but with _more_ secureness!☆20Updated 10 months ago
- Opaque Response Blocking (CORB++)☆35Updated 2 years ago
- Cookies should take scheme into account, just like every other storage mechanism on the web.☆16Updated 4 years ago
- `document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?☆16Updated last year
- [On hold for now] A mechanism for origins to set their origin-wide configuration in a central location☆33Updated 2 years ago
- Discussion area for security aspects of ECMAScript☆64Updated 7 years ago
- ☆21Updated 2 years ago
- Fetch Metadata☆74Updated last month
- WebAppSec Content Security Policy☆216Updated last month
- Incrementally better cookies.☆22Updated 2 years ago
- What if developers could opt-into better default behaviors en masse, forcing them to pick and choose the legacy risks they want to enable…☆19Updated 2 years ago
- rewrite constructor arguments, call DOMPurify, profit☆67Updated 5 months ago
- Security contract types☆60Updated 2 years ago
- User Interface Security and the Visibility API☆11Updated 4 years ago
- Security advisories for Node.js and the JavaScript ecosystem.☆41Updated 3 years ago
- A proposal to partition :visited link history by top-level site and frame origin.☆16Updated last month
- Reporting API☆79Updated last month
- Signature-based Resource Loading Restrictions☆31Updated 2 weeks ago
- ☆34Updated 4 years ago
- Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike☆235Updated 3 months ago
- A proposal to standardize security semantics of cross-site cookies☆17Updated last year
- Network Error Logging☆82Updated last month
- A proposal for allowing web applications to origin-key their agent clusters. Now archived, as this specification has been merged into the…☆24Updated 4 years ago
- ☆12Updated 2 years ago
- Proposal to use a CONNECT proxy to obfuscate the user IP address for privacy-enhanced prefetching.☆36Updated 2 years ago
- This is a tiny Chrome Extension that protects your from Clipboard XSS Attacks☆19Updated 9 years ago
- Browsers RFC 6265 compatibility research - http://inikulin.github.io/cookie-compat.☆30Updated 8 years ago
- ☆75Updated 3 months ago
- 脆弱性報奨金制度に関する詳細文書を保管するレポジトリです☆34Updated 2 months ago