Chris Thompson
Chris Thompson
Opening this issue to track getting replacements for these. It looks like they'll require special issuance with Digicert, so no-subject (which is expiring soon) may briefly break, unfortunately.
This has been on my wishlist for a while, and it was raised again in #443, so I thought it would be good to write up my ideas here. Some...
This adds the cert chains for the interception test subdomains added in #423. It also fixes a typo/copy-paste error for the known-interception.badssl.com page where I had accidentally set the hostname...
Update with a re-generated self-signed certificate (the previous one had expired, and I forgot to check in my previous re-generated one into the repository). Fixes #418.
When working on #388, running `make serve` led to nginx throwing lots of permission errors. This adds an extra command run before the main entrypoint in `Dockerfile` to ensure that...
This updates the Python scripts in `scripts/` to be Python3 compatible, and does some general cleanup. This also adds a new `.pylintrc` file and `.style.yapf` file so pylint and yapf...
To test URL display in Payment Handler UIs, it would be nice to have a test case that allows us to: - Register a payment handler with an arbitrary target...
I recently pulled in the new release of the library into my project and had some difficulty with API changes to the [`privatesuffix()`](https://github.com/ko-zu/psl/blob/c35b56338aa20014fa5f470b896fecddccf653a9/publicsuffixlist/__init__.py#L228) method in particular. My project's existing code...
### WebKittens @annevk @bailey ### Title of the spec HTTPS Upgrades ### URL to the spec https://fetch.spec.whatwg.org/ ### URL to the spec's repository https://github.com/whatwg/fetch ### Issue Tracker URL _No response_...
## Introduction Currently public websites can probe a user's local network, perform CSRF attacks against vulnerable local devices, and generally abuse the user's browser as a "confused deputy" that has...