-
Notifications
You must be signed in to change notification settings - Fork 2
Issues: w3c/security-review
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Leaking exact content of an element?
pending
Issue created by the tracker tool and may need to be refined
s:ift
https://w3c.github.io/IFT/Overview.html
tracker
Security is following a discussion, but doesn't require resolution.
wg:webfonts
https://www.w3.org/groups/wg/webfonts
#257
opened May 7, 2025 by
w3cbot
Security discussion for Scope-Extensions
cg:wicg
https://www.w3.org/groups/cg/wicg
pending
Issue created by the tracker tool and may need to be refined
s:manifest-incubations
https://wicg.github.io/manifest-incubations/
tracker
Security is following a discussion, but doesn't require resolution.
#256
opened Apr 30, 2025 by
w3cbot
Expose contentEncoding in resourceTiming
pending
Issue created by the tracker tool and may need to be refined
s:resource-timing
https://w3c.github.io/resource-timing/
tracker
Security is following a discussion, but doesn't require resolution.
#255
opened Apr 22, 2025 by
w3cbot
[SVG 2.0] Allow Issue created by the tracker tool and may need to be refined
s:svg
https://svgwg.org/svg2-draft/
tracker
Security is following a discussion, but doesn't require resolution.
use to reference an external document's root element by omitting the fragment
close?
pending
#254
opened Apr 22, 2025 by
w3cbot
Cryptographic parameters and security level
pending
Issue created by the tracker tool and may need to be refined
s:vc-di-eddsa
https://w3c.github.io/vc-di-eddsa/
tracker
Security is following a discussion, but doesn't require resolution.
wg:vc
https://www.w3.org/groups/wg/vc
#252
opened Apr 15, 2025 by
w3cbot
Non-structural unlinkability
pending
Issue created by the tracker tool and may need to be refined
s:vc-di-ecdsa
https://w3c.github.io/vc-di-ecdsa/
tracker
Security is following a discussion, but doesn't require resolution.
wg:vc
https://www.w3.org/groups/wg/vc
#251
opened Apr 15, 2025 by
w3cbot
ECDSA with Curve P-521
pending
Issue created by the tracker tool and may need to be refined
s:vc-di-ecdsa
https://w3c.github.io/vc-di-ecdsa/
tracker
Security is following a discussion, but doesn't require resolution.
wg:vc
https://www.w3.org/groups/wg/vc
#250
opened Apr 15, 2025 by
w3cbot
Request for clarification on the uage of Domain and Challenge Parameters
pending
Issue created by the tracker tool and may need to be refined
tracker
Security is following a discussion, but doesn't require resolution.
wg:vc
https://www.w3.org/groups/wg/vc
#249
opened Apr 15, 2025 by
w3cbot
Supported cryptographic primitives by current smart phones
pending
Issue created by the tracker tool and may need to be refined
s:vc-data-integrity
https://w3c.github.io/vc-data-integrity/
tracker
Security is following a discussion, but doesn't require resolution.
wg:vc
https://www.w3.org/groups/wg/vc
#248
opened Apr 15, 2025 by
w3cbot
Cryptographic parameters
pending
Issue created by the tracker tool and may need to be refined
s:vc-data-integrity
https://w3c.github.io/vc-data-integrity/
tracker
Security is following a discussion, but doesn't require resolution.
wg:vc
https://www.w3.org/groups/wg/vc
#247
opened Apr 14, 2025 by
w3cbot
Crypto layering - hybrid PQC and set vs chain signatures
pending
Issue created by the tracker tool and may need to be refined
s:vc-data-integrity
https://w3c.github.io/vc-data-integrity/
tracker
Security is following a discussion, but doesn't require resolution.
wg:vc
https://www.w3.org/groups/wg/vc
#246
opened Apr 14, 2025 by
w3cbot
Define registry inclusion rules
close?
pending
Issue created by the tracker tool and may need to be refined
s:digital-credentials
https://w3c-fedid.github.io/digital-credentials/
tracker
Security is following a discussion, but doesn't require resolution.
wg:fedid
#245
opened Apr 8, 2025 by
w3cbot
Data Integrity -> external resources
pending
Issue created by the tracker tool and may need to be refined
s:vc-data-integrity
https://w3c.github.io/vc-data-integrity/
tracker
Security is following a discussion, but doesn't require resolution.
wg:vc
https://www.w3.org/groups/wg/vc
#243
opened Mar 11, 2025 by
w3cbot
Detail Security Considerations Section
needs-resolution
Security expects this item to be resolved to their satisfaction.
pending
Issue created by the tracker tool and may need to be refined
s:dapt
https://w3c.github.io/dapt/
wg:timed-text
#242
opened Feb 13, 2025 by
w3cbot
Consider using Integrity Control
pending
Issue created by the tracker tool and may need to be refined
s:dapt
https://w3c.github.io/dapt/
tracker
Security is following a discussion, but doesn't require resolution.
wg:timed-text
#241
opened Feb 13, 2025 by
w3cbot
Structuring the security considerations section
pending
Issue created by the tracker tool and may need to be refined
s:vc-data-model
https://w3c.github.io/vc-data-model/
tracker
Security is following a discussion, but doesn't require resolution.
wg:vc
https://www.w3.org/groups/wg/vc
#240
opened Jan 18, 2025 by
w3cbot
Put text about fingerprinting in the Security Considerations Section to point one in privacy considerations
close?
needs-resolution
Security expects this item to be resolved to their satisfaction.
pending
Issue created by the tracker tool and may need to be refined
s:device-posture
https://w3c.github.io/device-posture/
wg:das
https://www.w3.org/groups/wg/das
#239
opened Nov 18, 2024 by
w3cbot
Structuring the security considerations section
needs-resolution
Security expects this item to be resolved to their satisfaction.
pending
Issue created by the tracker tool and may need to be refined
s:vibration
missing link
wg:das
https://www.w3.org/groups/wg/das
#238
opened Oct 31, 2024 by
w3cbot
Integration with permissions API
pending
Issue created by the tracker tool and may need to be refined
s:vibration
missing link
tracker
Security is following a discussion, but doesn't require resolution.
wg:das
https://www.w3.org/groups/wg/das
#236
opened Oct 24, 2024 by
w3cbot
Document-Isolation-Policy
pending
Issue created by the tracker tool and may need to be refined
s:document-isolation-policy
https://wicg.github.io/document-isolation-policy/
tracker
Security is following a discussion, but doesn't require resolution.
#235
opened Oct 10, 2024 by
w3cbot
Prevent currentScript from being overridden on document via name=''
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
tracker
Security is following a discussion, but doesn't require resolution.
whatwg
https://whatwg.org/
#234
opened Oct 9, 2024 by
w3cbot
Self-review of security and privacy questionnaire for 2.0 CR transition
cg:webassembly
pending
Issue created by the tracker tool and may need to be refined
s:wasm-core
https://webassembly.github.io/spec/core/bikeshed/
tracker
Security is following a discussion, but doesn't require resolution.
#233
opened Oct 8, 2024 by
w3cbot
Include details of SVG-as-Image and Canvas origin-clean
pending
Issue created by the tracker tool and may need to be refined
s:html
https://html.spec.whatwg.org/multipage/
tracker
Security is following a discussion, but doesn't require resolution.
whatwg
https://whatwg.org/
#231
opened Sep 25, 2024 by
w3cbot
Previous Next
ProTip!
Exclude everything labeled
bug with -label:bug.