Shared publicly  - 
 
An experimental Content Security Policy feature detection API just landed in today's Chrome Canary channel. Things have changed a bit from the initial proposal made back in May, and I think the current implementation is a good deal better than what I'd originally proposed.

The current working draft of the API's spec is available at https://dvcs.w3.org/hg/content-security-policy/raw-file/tip/csp-specification.dev.html#script-interfaces--experimental, and comments are very welcome on the public-webappsec@ mailing list (http://lists.w3.org/Archives/Public/public-webappsec/).

What do you think, +AngularJS? :)
6
17
Igor Minar's profile photoMike West's profile photo
4 comments
 
Is there a 1.0 vs 1.1 spec diff?
 
+Igor Minar It doesn't exist in the 1.0 spec, so, yes. Slight difference. :)
 
I meant git-like diff of the text
Add a comment...