mikewest / strict-csp-for-everyone
This is both a terrible and wonderful idea.
☆10Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for strict-csp-for-everyone
- A Modest Content Security Proposal☆39Updated 3 years ago
- Secure Contexts, but with _more_ secureness!☆19Updated 6 months ago
- Cookies should take scheme into account, just like every other storage mechanism on the web.☆16Updated 4 years ago
- Fetch Metadata☆75Updated 6 months ago
- Suborigins☆25Updated 3 years ago
- Opaque Response Blocking (CORB++)☆35Updated 2 years ago
- What if developers could opt-into better default behaviors en masse, forcing them to pick and choose the legacy risks they want to enable…☆19Updated last year
- Signature-based Resource Loading Restrictions☆23Updated this week
- `document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?☆16Updated last year
- A proposal to standardize security semantics of cross-site cookies☆17Updated 11 months ago
- Generate representative samples from Pwned Passwords (HIBP)☆12Updated 2 years ago
- Security contract types☆61Updated 2 years ago
- User Interface Security and the Visibility API☆11Updated 3 years ago
- Wouldn't it be nice if `Accept-Language` was a client hint?☆11Updated 3 years ago
- WebAppSec Content Security Policy☆210Updated 3 weeks ago
- This is a tiny Chrome Extension that protects your from Clipboard XSS Attacks☆19Updated 9 years ago
- WebAppSec Secure Contexts☆33Updated last year
- ☆11Updated 2 years ago
- Specifications for Privacy Proxy Implementations☆29Updated this week
- ☆20Updated 2 years ago
- Explainer for Schemeful Same-Site☆15Updated 4 years ago
- A security/privacy review questionnaire for W3C specs☆25Updated 2 months ago
- ☆29Updated 2 years ago
- Repo to track PING initiated issues on other standards documents.☆12Updated last week
- ☆23Updated 8 months ago
- Open YARA scan- and search engine☆16Updated last year
- Post-Spectre Web Development☆17Updated last year
- TC39 proposal for mitigating prototype pollution☆43Updated last year
- Go wrapper for awslabs/certlint☆24Updated 4 years ago
- A tool to run a command when the target of a symlink changes☆15Updated 8 years ago