[Webkit-unassigned] [Bug 205407] New: Create a mechanism for 'safe by default' web views

Wed Dec 18 12:22:51 PST 2019

https://bugs.webkit.org/show_bug.cgi?id=205407

            Bug ID: 205407
           Summary: Create a mechanism for 'safe by default' web views
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit2
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: bfulgham at webkit.org

Many WebKit applications use it as a convenient way of displaying local resources, such as in help systems, editing programs, splash screens, and so forth.

These use cases do not need the full machinery required for a full-fledged web browser, and could have a considerably tighter sandbox and more limited API access by default when used in one of these modes.

We should allow for a set of common WebView use cases, and help developers avoid introducing security risks to their applications by accidentally enabling powerful features.

This patch will create some common use categories that we can use as a basis for a hierarchy of features.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20191218/c738c598/attachment-0001.htm>