Just wanted to let everyone know that Caja is no longer vulnerable to browsers implementing the new simpler @@toStringTag spec, so there is no longer any need to wait for us. Thanks!
This spec change was one of several issues dealt with by our latest release. If you're curious about these, see the Caja security advisory at < https://code.google.com/p/google-caja/wiki/SecurityAdvisory20150313>. Enjoy! -- Cheers, --MarkM
_______________________________________________ es-discuss mailing list [email protected] https://mail.mozilla.org/listinfo/es-discuss
