Closed Bug 1919229 Opened 2 months ago Closed 2 months ago

Change WPT <to-javascript-parent-initiated-parent-csp.html> to create securitypolicyviolation event on javascript URL execution

Categories

(Core :: DOM: Security, defect, P3)

Product:
Core
Component:
DOM: Security
Type:
defect

Tracking

()

Status:
RESOLVED FIXED
Milestone:
132 Branch
Tracking Flags:
Tracking Status
firefox132 --- fixed

People

(Reporter: mbrodesser-Igalia, Assigned: mbrodesser-Igalia)

References

(Blocks 1 open bug)

Details

(Whiteboard: [domsecurity-active], [wptsync upstream])

Attachments

(1 file)

Bug 1919229: change <to-javascript-parent-initiated-parent-csp.html> to create securitypolicyviolation event on javascript URL execution. r=tschuster
48 bytes, text/x-phabricator-request
Details | Review
No description provided.

Previously, the securitypolicyviolation was created because an inline
event handler was attempted to be executed. The inline event handler's
code didn't matter.

Severity: -- → S3
Status: NEW → ASSIGNED
Priority: -- → P3
Whiteboard: [domsecurity-active]
Pushed by Ms2ger@gmail.com: https://hg.mozilla.org/integration/autoland/rev/4349180baf89 change <to-javascript-parent-initiated-parent-csp.html> to create securitypolicyviolation event on javascript URL execution. r=tschuster

https://hg.mozilla.org/mozilla-central/rev/4349180baf89

Status: ASSIGNED → RESOLVED
Closed: 2 months ago
status-firefox132: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 132 Branch
Created web-platform-tests PR https://github.com/web-platform-tests/wpt/pull/48272 for changes under testing/web-platform/tests
Whiteboard: [domsecurity-active] → [domsecurity-active], [wptsync upstream]
Upstream PR merged by moz-wptsync-bot
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: