canmove, Confirmed users, Bureaucrats and Sysops emeriti
2,776
edits
Security/Reviews/Firefox9/ReviewNotes/SourceMap: Difference between revisions
Jump to navigation
Jump to search
Security/Reviews/Firefox9/ReviewNotes/SourceMap (view source)
Revision as of 19:01, 25 August 2011
, 25 August 2011→Conclusions / Action Items (10-20 minutes)
| Line 31: | Line 31: | ||
** no code running in content can access the sourcemap library, thus preventing data exfil from other locations | ** no code running in content can access the sourcemap library, thus preventing data exfil from other locations | ||
== Conclusions / Action Items | == Conclusions / Action Items == | ||
* [decoder] Penetration testing for information leakage and code injection | * [decoder] Penetration testing for information leakage and code injection | ||
* Documentation needs to cover security implications with regards to making a source map public (MDN Doc) | * Documentation needs to cover security implications with regards to making a source map public (MDN Doc) | ||