adding @slightlylate @jaffathecake FYI
-
-
Replying to @sirdarckcat @freddyb
: neat work. Not sure i entirely from the RPO vector, tho.
1 reply 0 retweets 0 likes -
a same dir script referenced by a relative path on http://example.com/index.php/foo points to the wrong place
2 replies 0 retweets 1 like -
Replying to @sirdarckcat @freddyb
: the mitigation here is server-side blockage of SW=1 headers, no?
1 reply 0 retweets 0 likes -
for RPO? Or JSONP? For JSONP, yes. For RPO the attack is to skip the service worker.
2 replies 0 retweets 2 likes
Replying to @sirdarckcat @freddyb
: ah, i see. Thanks!
6:14 PM - 25 Mar 2017
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
& Web Standards TL; Blink API OWNER
Named PWAs w/
DMs open. Tweets my own; press@google.com for official comms.