mikewest / deprecating-document-domainLinks
`document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?
☆17Updated last year
Alternatives and similar repositories for deprecating-document-domain
Users that are interested in deprecating-document-domain are comparing it to the libraries listed below
Sorting:
- Fetch Metadata☆74Updated 4 months ago
- WebAppSec Content Security Policy☆220Updated 3 weeks ago
- This is both a terrible and wonderful idea.☆12Updated 5 years ago
- WebAppSec Subresource Integrity☆74Updated 3 weeks ago
- A Modest Content Security Proposal☆40Updated 3 years ago
- ☆23Updated 3 years ago
- Signature-based Resource Loading Restrictions☆40Updated 2 months ago
- Web Application Security Working Group repo☆634Updated 2 weeks ago
- Test cases and harnesses for URL testing☆30Updated 8 years ago
- Suborigins☆25Updated 4 years ago
- What is browser fingerprinting and how should specification authors address it.☆66Updated last month
- Opaque Response Blocking (CORB++)☆35Updated 2 years ago
- Parse Content Security Policy headers, warn about policy errors, safely manipulate, render, and optimise policies☆72Updated 10 months ago
- WebAppSec Secure Contexts☆34Updated 5 months ago
- 🔒🔍 A Go package to scan sites against requirements for Chromium-maintained HSTS preload list.☆121Updated last month
- Specification for the Client Hints infrastructure - privacy preserving proactive content negotiation☆62Updated last year
- Cookies should take scheme into account, just like every other storage mechanism on the web.☆16Updated 5 years ago
- [On hold for now] A mechanism for origins to set their origin-wide configuration in a central location☆33Updated 3 years ago
- Agenda and minutes of meetings of the Privacy Community Group☆100Updated last month
- Problem statement and basic mitigations for ephemeral fingerprinting on the web.☆21Updated 4 years ago
- Shavar/tracking protection lists used in prod☆150Updated last month
- ☆365Updated 5 months ago
- Web security drafts☆31Updated 6 years ago
- ☆160Updated this week
- New proposals in the Privacy Community Group☆128Updated 3 years ago
- Discussion area for security aspects of ECMAScript☆64Updated 7 years ago
- WebAppSec Referrer Policy☆26Updated last month
- Network Error Logging☆88Updated 2 months ago
- Security contract types☆60Updated 2 years ago
- Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …☆162Updated last year