Frédéric Wang

> In today's meeting with @koto, @lukewarlow and some Mozillians it was agreed to adapt https://w3c.github.io/trusted-types/dist/spec/#dom-trustedtypepolicyfactory-createpolicy to match the policy names permitted by https://w3c.github.io/trusted-types/dist/spec/#trusted-types-csp-directive. I was not part of these...

> Changing CSP syntax seems like a non-starter. HTTP headers are best kept simple. (It would be good to test some non-ASCII bytes here.) As I said I was not...

@mbrodesser-Igalia Can you please elaborate a bit more what you had in mind? Is the idea just that the sandbox directive disables scripts by default, so we should make sure...

> I vaguely remember that some sandbox- and trusted-type-code in Gecko for CSP was next to each other and it wasn't obvious to me whether combinations of those flags work...

Thanks everybody. I was not aware that so many new math fonts were released. Happy to accept PRs to add them.

I'm also curious about that too. I filled https://bugzilla.mozilla.org/show_bug.cgi?id=1631477 because it was appearing in WPT test html/webappapis/system-state-and-capabilities/the-navigator-object/protocol.https.html and apparently Chrome implements it, but I don't know what were the rationale...

My personal opinion is that a blocklist is attractive in the long term because it would make much easier to quickly extend the whitelist. I'm not really qualified to say...

@fred-wang I think we should do it on the otf files provided by font designers at least, so we can report any issues to them. In theory, WOFF is only...

Apparently this is to control automatic numbering of formulas: https://tex.stackexchange.com/questions/9514/whats-the-difference-between-align-and-align TeXZilla follows https://golem.ph.utexas.edu/~distler/blog/itex2MMLcommands.html and so does not support the starred versions.

I also got this error when trying to work import the code into Mozilla chat client, see https://bugzilla.mozilla.org/show_bug.cgi?id=1199855#c12