Updates:
Cc: erights
Comment #1 on issue 1760 by kpreid.switchb.org: Revisit
NO_KNOWN_EXPLOIT_SPEC_VIOLATION
http://code.google.com/p/google-caja/issues/detail?id=1760
Related work: as discussed in <https://codereview.appspot.com/9979047/>, we
should document which problems are “safe” to ignore, or even
programmatically restrict which ones may be ignored.
(Actually, perhaps we should even clarify the existing severity levels: for
example, it is unclear to me how NOT_OCAP_SAFE and NOT_ISOLATED are
meaningfully distinct; that is, how an application which has only
NOT_OCAP_SAFE level SES can successfully sandbox any code.)
--
You received this message because this project is configured to send all
issue notifications to this address.
You may adjust your notification preferences at:
https://code.google.com/hosting/settings
--
---
You received this message because you are subscribed to the Google Groups "Google Caja Discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/groups/opt_out.
