219
edits
User:Mkaply:Fx-Docs:Microformats: Difference between revisions
User:Mkaply:Fx-Docs:Microformats (view source)
Revision as of 21:10, 29 January 2008
, 29 January 2008no edit summary
No edit summary |
|||
| Line 116: | Line 116: | ||
== References == | == References == | ||
[[Firefox/Feature Brainstorming:Microformat Handling]] (take this page with a grain of salt) | [[Firefox/Feature Brainstorming:Microformat Handling]] (take this page with a grain of salt) | ||
= Notes from security review = | |||
* Test Microformats code when loaded as a resource URL on a web page (resource://gre/modules/Microformats.js) | |||
* Determine if XPCNativeWrappers are on for Component.imports | |||
* Turn native wrappers off in and see what happens. | |||
* Check for native wrapper on incoming nodes | |||
* Don't default to content.document if there is no rootElement | |||
* Escape XPath queries | |||
* Add a warning to recurseFrames about domains not being from the same level | |||
* Update using microformats with a better description of the returned objects (mention node, resolvedNode, etc.) | |||
* Check for a replacement for getBoxObjectFor in FF3 | |||
* Test with strict mode on. | |||
* Document that URLs are not sanitized. | |||