w3c / webappsec-suborigins

Related projects ⓘ

Alternatives and complementary repositories for webappsec-suborigins

• w3c / websec
  Web security drafts
  ☆31Updated 5 years ago
• w3c / webappsec-uisecurity
  User Interface Security and the Visibility API
  ☆11Updated 3 years ago
• WICG / signature-based-sri
  Signature-based Resource Loading Restrictions
  ☆23Updated this week
• w3c / webappsec-cowl
  WebAppSec Confinement Origin Web Labels
  ☆11Updated 3 years ago
• mikewest / strict-csp-for-everyone
  This is both a terrible and wonderful idea.
  ☆10Updated 5 years ago
• w3c / webappsec-subresource-integrity
  WebAppSec Subresource Integrity
  ☆70Updated last month
• w3c / webappsec-referrer-policy
  WebAppSec Referrer Policy
  ☆26Updated last week
• w3c / webappsec-fetch-metadata
  Fetch Metadata
  ☆75Updated 6 months ago
• WICG / csp-next
  A Modest Content Security Proposal
  ☆39Updated 3 years ago
• w3c / webappsec-secure-contexts
  WebAppSec Secure Contexts
  ☆33Updated last year
• w3c / webappsec-credential-management
  WebAppSec Credential Management
  ☆50Updated 2 months ago
• antifraudcg / meetings
  Agenda/Minutes of Anti-Fraud Community Group meetings.
  ☆17Updated 2 weeks ago
• WICG / origin-policy
  [On hold for now] A mechanism for origins to set their origin-wide configuration in a central location
  ☆33Updated 2 years ago
• w3ctag / security-questionnaire
  A security/privacy review questionnaire for W3C specs
  ☆25Updated 2 months ago
• tc39 / security
  Discussion area for security aspects of ECMAScript
  ☆64Updated 6 years ago
• annevk / orb
  Opaque Response Blocking (CORB++)
  ☆35Updated 2 years ago
• mikewest / deprecating-document-domain
  `document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?
  ☆16Updated last year
• mikewest / securer-contexts
  Secure Contexts, but with _more_ secureness!
  ☆19Updated 6 months ago
• shapesecurity / salvation
  Parse Content Security Policy headers, warn about policy errors, safely manipulate, render, and optimise policies
  ☆68Updated 2 months ago
• webcompat / tinker-tester-developer-spy
  An experimental Firefox addon to help diagnose and debug web sites and web apps.
  ☆12Updated 5 years ago
• asankah / ephemeral-fingerprinting
  Problem statement and basic mitigations for ephemeral fingerprinting on the web.
  ☆20Updated 3 years ago
• mkruisselbrink / navigator-connect
  ☆24Updated 9 years ago
• w3c / dnt
  Archive of DNT deliverables
  ☆12Updated 3 years ago
• w3c / fingerprinting-guidance
  What is browser fingerprinting and how should specification authors address it.
  ☆56Updated this week
• w3c / network-error-logging
  Network Error Logging
  ☆81Updated 2 months ago
• mikewest / cookies-over-http-bad
  Archived proposal from 2018. Perhaps the approach in mikewest/scheming-cookies will be more successful!
  ☆50Updated 4 years ago
• WICG / credentiallessness
  `COEP: x-bikeshed-credentialless-unless-cors`
  ☆28Updated 2 years ago
• mozilla / tls-canary
  DEPRECATED - TLS regression scanner for Firefox
  ☆18Updated last year
• mikewest / scheming-cookies
  Cookies should take scheme into account, just like every other storage mechanism on the web.
  ☆16Updated 4 years ago
• cryptosense / w3c-crypto-inspector
  Chromium extension to inspect W3C Web Cryptography API calls and keys.
  ☆14Updated 10 years ago