summaryrefslogtreecommitdiffstats
path: root/dom/security
Commit message (Expand)AuthorAgeLines
* CSP: connect-src 'self' should always include https: and wss: schemesjanekptacijarabaci2018-02-22-11/+168
* CSP: Support IDNs in connect-srcjanekptacijarabaci2018-02-22-2/+135
* CSP: Ignore nonces on <img> per specjanekptacijarabaci2018-02-22-4/+111
* CSP: Upgrade SO navigational requests per spec.janekptacijarabaci2018-02-22-0/+184
* CSP 2 - ignore (x-)frame-options if CSP with frame-ancestors directive existsjanekptacijarabaci2018-02-22-0/+104
* Explicitly cancel channel after mixed content redirect.wolfbeast2018-02-08-1/+6
* CSP should only check host (not including path) when performing frame ancesto...wolfbeast2018-02-06-0/+19
* Add m-esr52 at 52.6.0Matt A. Tobin2018-02-02-0/+31574