Open
Bug 1536152
Opened 5 years ago
Updated 1 year ago
Restrict JS from running within the Picture-in-Picture window <xul:browser>
Categories
(Toolkit :: Picture-in-Picture, enhancement, P3)
Toolkit
Picture-in-Picture
Tracking
()
NEW
People
(Reporter: mconley, Assigned: mconley)
References
(Blocks 1 open bug)
Details
(Whiteboard: [pip-needs-eng-triage])
Per a discussion with ehsan and Nika, we feel like it'd be prudent to ensure that content JS can never run in the about:blank document that we load the cloned <video> element in.
|
Assignee | |
Updated•5 years ago
|
Assignee: nobody → mconley
|
|
Assignee | |
Updated•5 years ago
|
Priority: P1 → P3
|
|
Assignee | |
Comment 2•5 years ago
|
||
This is defense-in-depth work. With what we currently do with the cloned video, I don't think there's currently any risk here, but it'd just be good hygiene to do this.
Flags: needinfo?(mconley)
|
|
Assignee | |
Updated•5 years ago
|
|
|
Assignee | |
Updated•3 years ago
|
Component: Video/Audio Controls → Picture-in-Picture
Version: unspecified → Trunk
|
||
Updated•2 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•