index
:
uxp
1210
1791
1805-stacksize
1970-form-focusring-styling
1992
28.9-platform
28.9-platform-old
ANGLE-update
Basilisk-release
CCW-perf
Pale_Moon-release
RFC6367
VS2017
aruba
dynamic-module-import
eme
fetchstreams-work
freebsd-support
getnativepath-work
js-modules
libaom-update
lzma-updater
master
modulefix
nss-gyp
nss-gyp-GREport
nss-gyp-work
nss-update-work
pref-dual-guid
re-unify
redwood
release
release-29
restore-dual-guid
scroll-anchoring-wip
v8re-shim-build
v8re-shim-work
xpiprovider-work
uxp [Local Fork]
khronosschoty@posteo.org
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
dom
/
security
Commit message (
Expand
)
Author
Age
*
nsIContentPolicy::TYPE_DOCUMENT - Use "aLoadInfo->ContextForTopLevelLoad()" i...
janekptacijarabaci
2018-07-05
*
Bug 1469150 - CSP: Scripts with valid nonce get blocked if URL redirects is f...
janekptacijarabaci
2018-06-23
*
Bug 1469150 - Tests added to check scripts with valid nonce is allowed if URL...
janekptacijarabaci
2018-06-23
*
Bug 1469150 - CSP: Scripts with valid nonce get blocked if URL redirects
janekptacijarabaci
2018-06-21
*
Bug 1430758 - No CSP directive for nsIContentPolicy::TYPE_SAVEAS_DOWNLOAD
janekptacijarabaci
2018-06-17
*
Bug 1398229 - Save-link-as feature should use the loading principal - impleme...
janekptacijarabaci
2018-06-17
*
Remove support and tests for HSTS priming from the tree. Fixes #384
Gaming4JC
2018-05-26
*
Remove MOZ_B2G leftovers and some dead B2G-only components.
wolfbeast
2018-05-12
*
Bug 1359204 - Do not query nested URI within CheckChannel in ContentSecurityM...
janekptacijarabaci
2018-04-30
*
Bug 1182569: Update ContentSecurityManager to handle docshell loads
janekptacijarabaci
2018-04-30
*
moebius#187: DOM - nsIContentPolicy - context (document)
janekptacijarabaci
2018-04-23
*
Revert "Bug 1182569: Update ContentSecurityManager to handle docshell loads"
janekptacijarabaci
2018-04-22
*
Bug 1182569: Update ContentSecurityManager to handle docshell loads
janekptacijarabaci
2018-04-22
*
Bug 1329288: Allow content policy consumers to identify contentPolicy checks ...
janekptacijarabaci
2018-04-22
*
Bug 1329288 - Test ContentPolicy blocks opening a new window
janekptacijarabaci
2018-04-22
*
moebius#230: Consider blocking top level window data: URIs (part 3/3 without ...
janekptacijarabaci
2018-04-22
*
moebius#226: Consider blocking top level window data: URIs (part 2/2 without ...
janekptacijarabaci
2018-04-22
*
moebius#223: Consider blocking top level window data: URIs (part 1/3 without ...
janekptacijarabaci
2018-04-22
*
moebius#159: CSP - support for "frame-ancestors" in "Content-Security-Policy-...
janekptacijarabaci
2018-04-14
*
Bug 1288768 - Better error reporting for network errors in workers
janekptacijarabaci
2018-04-04
*
Add support for CSP v3 "worker-src" directive
wolfbeast
2018-03-03
*
CSP: connect-src 'self' should always include https: and wss: schemes
janekptacijarabaci
2018-02-22
*
CSP: Support IDNs in connect-src
janekptacijarabaci
2018-02-22
*
CSP: Ignore nonces on <img> per spec
janekptacijarabaci
2018-02-22
*
CSP: Upgrade SO navigational requests per spec.
janekptacijarabaci
2018-02-22
*
CSP 2 - ignore (x-)frame-options if CSP with frame-ancestors directive exists
janekptacijarabaci
2018-02-22
*
Explicitly cancel channel after mixed content redirect.
wolfbeast
2018-02-08
*
CSP should only check host (not including path) when performing frame ancesto...
wolfbeast
2018-02-06
*
Add m-esr52 at 52.6.0
Matt A. Tobin
2018-02-02