mikewest / deprecating-document-domainLinks
`document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?
☆17Updated last year
Alternatives and similar repositories for deprecating-document-domain
Users that are interested in deprecating-document-domain are comparing it to the libraries listed below
Sorting:
- ☆21Updated 3 years ago
- A Modest Content Security Proposal☆40Updated 3 years ago
- Secure Contexts, but with _more_ secureness!☆20Updated last year
- Problem statement and basic mitigations for ephemeral fingerprinting on the web.☆21Updated 4 years ago
- Opaque Response Blocking (CORB++)☆35Updated 2 years ago
- Incrementally better cookies.☆22Updated 3 years ago
- Idiosyncracies of the HTML parser☆40Updated 8 months ago
- Cookies should take scheme into account, just like every other storage mechanism on the web.☆16Updated 5 years ago
- [On hold for now] A mechanism for origins to set their origin-wide configuration in a central location☆34Updated 3 years ago
- `COEP: x-bikeshed-credentialless-unless-cors`☆28Updated 3 years ago
- User Interface Security and the Visibility API☆11Updated 4 years ago
- ☆39Updated 3 years ago
- Explainer for Schemeful Same-Site☆15Updated 4 years ago
- WebAppSec Secure Contexts☆34Updated 4 months ago
- Fetch Metadata☆74Updated 2 months ago
- Discussion area for security aspects of ECMAScript☆64Updated 7 years ago
- Explainer and spec for the Content Indexing proposal☆29Updated 4 years ago
- Archive of DNT deliverables☆13Updated 3 years ago
- A repository for the ServiceWorker static routing API.☆27Updated last month
- Internationalization tests run with the W3C i18n test suite.☆18Updated 2 weeks ago
- Quirks Mode Standard☆31Updated 2 months ago
- WebAppSec Subresource Integrity☆74Updated last week
- ☆17Updated 7 years ago
- WebAssembly Types☆17Updated 7 years ago
- Document describing the process for making changes to ECMA-262☆30Updated 5 months ago
- Specification for the Client Hints infrastructure - privacy preserving proactive content negotiation☆63Updated last year
- Signature-based Resource Loading Restrictions☆39Updated last month
- ☆11Updated 3 years ago
- What is browser fingerprinting and how should specification authors address it.☆66Updated 3 months ago
- An API to allow developers transfer the ability to use restricted APIs to any target window in the frame tree.☆16Updated 11 months ago