Closed Bug 1179062 Opened 9 years ago Closed 9 years ago

investigate marketplace for apps that use CSP

Tracking

(Not tracked)

Status:

RESOLVED FIXED

People

(Reporter: pauljt, Assigned: cr)

References

Details

Paul Theriault [:pauljt] (no longer reading bugmail)

Reporter

Description

•

9 years ago

We need to review the usage of the "csp" manifest attribute in the marketplace. I suspect it is rarely used, and rarely used correctly when it is used. Basically we need to determine if we we really need to support a manifest equivalent in the new security model. My hunch is "no" but we should test this.

Christiane Ruetten [INACTIVE]

Assignee

Comment 1

•

9 years ago

I compiled an overview of CSP usage here:

https://docs.google.com/document/d/1qCtIfvNmDhCho1QSBMP9TyqTOU_JmhoqddnpvLSnbes

Paul Theriault [:pauljt] (no longer reading bugmail)

Reporter

Updated

•

9 years ago

Status: NEW → RESOLVED

Closed: 9 years ago

Resolution: --- → FIXED

BMO Automation

Updated

•

6 years ago

Product: mozilla.org → mozilla.org Graveyard

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

investigate marketplace for apps that use CSP

Categories

(mozilla.org Graveyard :: Security Assurance: FxOS Review, task)

Tracking

(Not tracked)

People

(Reporter: pauljt, Assigned: cr)

References

Details

Crash Data

Security

(public)

User Story

Description

Comment 1

Updated

Updated