ementing a change here.
-Andrew
On Mon, May 8, 2023 at 3:26 PM Mike West wrote:
> Hey Andrew!
>
> On Tue, May 2, 2023 at 4:41 PM Andrew Williams
> wrote:
>
>> Contact emails
>>
>> awil...@chromium.org
>>
>> Explainer
>>
>> This c
Contact emails
awil...@chromium.org
Explainer
This change is not covered by an explainer, but the following are related:
https://github.com/shivanigithub/http-cache-partitioning
https://github.com/MattMenke2/Explainer---Partition-Network-State/blob/main/README.md
Spec
https://fetch.spec.what
estions on this please let me know! Thanks,
-Andrew
On Mon, Sep 25, 2023 at 2:18 AM Yoav Weiss wrote:
> LGTM to continue experimenting!
>
> On Tue, Sep 19, 2023 at 7:55 PM Andrew Williams
> wrote:
>
>> Hey everyone,
>>
>> TL;DR: We'd like to extend th
Contact emails
miketa...@chromium.org, awil...@chromium.org
Explainer
None yet.
Specification
https://fetch.spec.whatwg.org/#http-cache-partitions
Summary
We aim to experiment with utilizing the initiator site when caching the
responses of cross-site navigations in the HTTP cache. This exper
#x27;d love to better understand the attack scenario.
>>
>> On Friday, September 6, 2024 at 5:40:55 AM UTC+2 Andrew Williams wrote:
>>
>> Contact emails
>>
>> miketa...@chromium.org, awil...@chromium.org
>>
>> Explainer
>>
>> None yet.
&g
and implementing/collecting the new
metrics before landing this change is a better way forward (despite taking
more time)?
-Andrew
On Fri, Aug 27, 2021 at 1:45 PM Andrew Williams
wrote:
> Thanks for the feedback/questions Yoav and Daniel.
>
> We have some metrics
> <https://source.ch
ver,
> - Sending that report to any configured endpoints for the document, and
> - Counting the usage for UMA, so that we can track the (hopefully)
> declining usage of the deprecated feature.
>
> Ian
>
>
>> Cheers :)
>> Yoav
>>
>> On Wednesday, Septem
ike both the right directional and philosophical thing to do
>>> with cookies. I'd like to see it ship, and a staged rollout might well be a
>>> reasonable way of gaining confidence in our ability to do so?
>>>
>>> -mike
>>>
>>>
>>> O
Thu, Jul 29, 2021 at 11:14 PM Daniel Bratell
>> wrote:
>>
>>> LGTM1 - seems unlikely to cause serious breakages since it will
>>> typically be more accepting than before, and it being the same as at least
>>> one other browser engine.
>>>
>>> /
/+/1cc31f46c2e6ae658a97b92fbc8c556eba382d3e/content/browser/frame_host/render_frame_host_impl.cc#8309>]
>> (many refactors ago). It looks like most of the necessary functions still
>> exist, so it shouldn't be too hard to recreate that functionality if
>> needed.
>>
>
&g
next week given the
holiday in the U.S..
-Andrew
On Wed, Nov 24, 2021 at 11:29 AM Chris Harrelson
wrote:
> Hi Andrew,
>
> M96 has now shipped. Is the UseCounter data now available?
>
> On Thu, Nov 4, 2021 at 7:33 PM Andrew Williams
> wrote:
>
>> Hi Daniel,
>&
a \x00 character
Thus, with the proposed change to reject cookie strings containing any of
these characters, 0.0007% of cookie strings would be rejected.
-Andrew
On Wed, Nov 24, 2021 at 12:14 PM Andrew Williams
wrote:
> Hi Chris,
>
> We've collected 7 days worth of metrics since M9
adding an enterprise policy?
>>
>> On Tuesday, November 30, 2021 at 2:17:27 PM UTC+1 Andrew Williams wrote:
>>
>>> Regarding cookie strings that get truncated in Chrome today but that
>>> still get treated as valid:
>>>
>>> 0.0007 % of valid
or the platform.
>>> Good luck shipping it!
>>>
>>> -mike
>>>
>>>
>>> On Wed, Dec 1, 2021 at 11:41 AM Yoav Weiss
>>> wrote:
>>>
>>>> LGTM1 to ship given the low numbers, although we still want to do this
>>>
I'll post back here once we have an update on implementing the DevTools
Issue + deprecation reporting.
-Andrew
On Fri, Dec 3, 2021 at 1:19 AM Yoav Weiss wrote:
>
>
> On Thu, Dec 2, 2021 at 8:14 PM Andrew Williams
> wrote:
>
>> Thanks for the link, Daniel, and thank
Hi blink-dev@,
As implemented in Chrome today, attempting to create a BroadcastChannel
instance in an opaque origin context will result in an exception being
thrown. We plan to ship a minor change that will allow BroadcastChannel
instances to be created and used in these contexts, which will align
Thanks for taking a look, Yoav. I believe your understanding aligns with
mine - BroadcastChannel instances in an opaque origin context can only
exchange messages with other instances tied to that same opaque origin, and
there's no way to create the same opaque origin in another browsing context.
Contact emails
awil...@chromium.org, miketaylr@chromium.orgExplainer
https://github.com/httpwg/http-extensions/issues/1531
https://github.com/httpwg/http-extensions/pull/1589
Specification
https://github.com/httpwg/http-extensions/blob/main/draft-ietf-httpbis-rfc6265bis.md
Summary
Updates how
; /Daniel
>
> On 2021-08-25 16:18, Yoav Weiss wrote:
>
> Hey Andrew! Thanks for working on this, this seems like a significant
> compatibility gap (with security implications) that would be great to
> close.
>
> On Tuesday, August 24, 2021 at 3:45:50 PM UTC+2 Andrew W
Hi Domenic,
You are correct - there was one more spec change we had planned related to
this, which we now have a PR for at
https://github.com/whatwg/html/pull/10731
Thanks!
-Andrew
On Wed, Oct 30, 2024 at 1:21 AM Domenic Denicola
wrote:
> It's awesome to see this work progressing!
>
> On Wed,
Quick update - the spec changes for this have all landed:
- https://github.com/whatwg/html/pull/10731
- https://github.com/whatwg/fetch/pull/1783
- https://github.com/w3c/FileAPI/pull/201
-Andrew
On Thu, Oct 31, 2024 at 10:03 AM Andrew Williams
wrote:
> Hi Domenic,
>
> You ar
ed to, given that we plan to implement what the
functionality they have already, just using sites instead of origins.
-Andrew
On Thu, Dec 12, 2024 at 12:35 PM Andrew Williams
wrote:
> Thanks Domenic, we've landed a change to remove .tentative from the test
> file names:
> htt
gt; breakage.
>>
>> Regarding formal signals from Gecko and Webkit, we opened one from Gecko
>> but haven't heard anything:
>> https://github.com/mozilla/standards-positions/issues/1151. For WebKit,
>> we reached out regarding whether we should open one and the
Thanks Domenic, we've landed a change to remove .tentative from the test
file names:
https://chromium-review.googlesource.com/c/chromium/src/+/5967596
Gregg, IIUC "top-level->iframe(blob-from-top-level)" means the top-level
creates a blob URL and then creates an iframe where the src is that blob
U
5, 2025 at 7:54 AM Mike Taylor
>>> wrote:
>>>
>>>> On 2/25/25 2:55 AM, Yoav Weiss (@Shopify) wrote:
>>>>
>>>> Thanks for pushing this!
>>>>
>>>> On Monday, February 24, 2025 at 8:04:31 PM UTC+1 Andrew Williams wrote:
330
On Tue, Mar 4, 2025 at 8:46 PM Domenic Denicola
wrote:
>
>
> On Wed, Mar 5, 2025 at 2:35 AM Andrew Williams
> wrote:
>
>> Hi everyone,
>>
>> Quick update on this. We landed a new use counter implementation last
>> week that better gauges actual breakage, a
://flags
>>> entry) suggest to me that the risk is low, and if we get it wrong, we can
>>> undo the change.
>>> On 4/18/25 4:39 PM, Andrew Williams wrote:
>>>
>>> Hi blink-dev,
>>>
>>> > Hmm, that extra complexity seems a bit unfortu
ate with the Storage Access API so
that contexts that have been granted a StorageAccessHandle will still be
able to fetch Blob URLs in the same way they could before this change (so,
without regard to top-level site or the "has-cross-site-ancestor" boolean)
-Andrew
On Mon, Feb 10, 2025 at
com/”)
> ...
>
>
> I assume here that you can poll "handle" to see when it changes from a
> document you can access to one you cannot access? Could that information
> leakage have been fixed instead of making a.com load slower?
>
> /Daniel
> On 2025-02-24 19:5
-site-main-frame-navigation" boolean to the HTTP cache. We will
follow-up with an Intent-to-Ship for this soon. :)
If anyone has any questions about this experiment please let me know.
Thanks!
-Andrew
On Fri, Sep 13, 2024 at 10:51 AM Andrew Williams
wrote:
> > I'd love to
Contact emailsmiketa...@chromium.org, awil...@chromium.org
Explainer
HTTP cache partitioning in general is covered by
https://github.com/shivanigithub/http-cache-partitioning, and this proposal
extends partitioning to navigations. This I2S and the linked resources
discuss the partitioning scheme c
Thanks for taking a look Yoav, replying inline below
On Tue, Feb 25, 2025 at 2:55 AM Yoav Weiss (@Shopify) <
yoavwe...@chromium.org> wrote:
> Thanks for pushing this!
>
> On Monday, February 24, 2025 at 8:04:31 PM UTC+1 Andrew Williams wrote:
>
> Contact emailsmiketa.
32 matches
Mail list logo
