Bug 968586 (csp-w3c-2)

[meta] Implement Content Security Level 2 per the W3C standard

ASSIGNED
Assigned to

Status

()

enhancement
P3
normal
ASSIGNED
5 years ago
10 days ago

People

(Reporter: grobinson, Assigned: ckerschb)

Tracking

(Depends on 13 bugs, Blocks 2 bugs, {meta})

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: [domsecurity-meta], URL)

(Reporter)

Description

5 years ago
Track work needed to bring Gecko to conformance with the CSP 1.1 spec currently being developed.
I'm not sure that this should depend on the XSS filter bug - that doesn't need to be fixed for Gecko to be CSP 1.1 compliant, more that if Gecko had one, it would need to honor the reflected-xss directive.

Updated

5 years ago
Depends on: 846978

Updated

5 years ago
Depends on: 873302
Alias: csp-w3c-1.1
Component: Security → DOM: Security
(Reporter)

Updated

5 years ago
No longer depends on: xssfilter
Depends on: 1007634
Depends on: 1036399

Updated

5 years ago
Depends on: 1037335
Depends on: 999656
Depends on: 1100181
Keywords: meta
Summary: Implement Content Security Policy 1.1 per the W3C standard → Implement Content Security Policy 1.1 (Level 2) per the W3C standard
Alias: csp-w3c-1.1 → csp-w3c-2
Summary: Implement Content Security Policy 1.1 (Level 2) per the W3C standard → Implement Content Security Level 2 per the W3C standard
Depends on: 1004703
(Assignee)

Updated

4 years ago
Depends on: 1139297

Updated

4 years ago
Depends on: 1177074
(Assignee)

Updated

4 years ago
Depends on: 1220001
(Assignee)

Updated

4 years ago
Depends on: 1223647
(Assignee)

Updated

4 years ago
Depends on: 1219453
(Assignee)

Updated

4 years ago
Depends on: 1222904
(Assignee)

Updated

4 years ago
Depends on: 1224225
(Assignee)

Updated

4 years ago
Depends on: 1224694
(Assignee)

Updated

3 years ago
Depends on: CVE-2016-2816
(Assignee)

Updated

3 years ago
No longer depends on: 1100181
(Assignee)

Updated

3 years ago
Whiteboard: [domsecurity-meta]
(Assignee)

Updated

3 years ago
Assignee: nobody → ckerschb
Status: NEW → ASSIGNED

Updated

3 years ago
Depends on: 1297051
Depends on: 1313937

Updated

2 years ago
Duplicate of this bug: 1340891
(Assignee)

Updated

2 years ago
Depends on: 1340891
Depends on: 1024557
Depends on: 1404438
Depends on: 1412271
Depends on: 1417822
Depends on: 1457100
Depends on: 1469150

Updated

10 months ago
Priority: -- → P3
(Assignee)

Updated

10 months ago
No longer depends on: 1037335
(Assignee)

Updated

10 months ago
Depends on: 1472661
(Assignee)

Updated

5 months ago
Depends on: 1505412
Summary: Implement Content Security Level 2 per the W3C standard → [meta] Implement Content Security Level 2 per the W3C standard
Type: defect → enhancement
You need to log in before you can comment on or make changes to this bug.