Attacks against WebViews aren't just attacks against the pages, they're attacks against *the host app*. Everything you trusted it with.
Don't have that data offhand (and not sure I can share directly), but any default browser that supports CCT would get invoked when apps call out to it. That's at least FF, Opera, and Samsung Internet. Probably also Brave.
-
-
Can Android app intents still claim arbitrary URLs, with the OS giving you a choice for overlapping claims? The abuse of protocol on iOS really undermined this http://epeus.blogspot.com/2013/06/how-apples-ios-fragmentation-problems.html#missing%20links …
-
Somewhat separate issue, but yes, intent filters are A Thing:https://developer.android.com/training/app-links/deep-linking#adding-filters …
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
& Web Standards TL; Blink API OWNER
Named PWAs w/
DMs open. Tweets my own; press@google.com for official comms.