On Thu, Jun 11, 2015 at 8:57 PM, Elliott Sprehn <espr...@chromium.org> wrote:
> I don't think the clipboard should forbid inserting image data, there's so > many ways to compromise desktop software. ex. pasting text/html into > Mail.app might even do it. This API shouldn't be trying to prevent that. > Well, the only *really* foolproof way to avoid software vulnerabilities is not using a computer ;). I'd still like to see concrete suggestions (like suggested algorithms or clipboardData methods) that we might consider for a safer solution - if we can come up with any. -Hallvord