Craig Francis
Craig Francis
From Ruben (Microsoft): we're looking into browser extensions at some point in the near future.
From [Ron Waldon](https://code.google.com/p/chromium/issues/detail?id=445359#c4) (jokeyrhyme): If Accessibility doesn't deserve its own tab, I wonder if Security does?
From [Lucas Garron](https://code.google.com/p/chromium/issues/detail?id=445359#c6): Every single resource connection could use a different ciphersuite and cert chain.
From [Lucas Garron](https://code.google.com/p/chromium/issues/detail?id=445359#c8): be very careful about the use of colors/security indicators [...] not to conflate _security_ properties with recommendations/best practices.
From [Lucas Garron](https://code.google.com/p/chromium/issues/detail?id=445359#c8): be very careful about the use of colors/security indicators.
Not complete. The tests that use a non-`literal-string` for parameters 2 and 3, incorrectly return a `literal-string`. --- These tests should work ([results](https://phpstan.org/r/5b70ac59-4e91-4dd5-ac7d-b63eec30cef8)). I suspect the original function definition, which...
Looks like `` is now using `position: fixed`... as of Chrome 93? https://github.com/w3c/csswg-drafts/issues/4645 https://www.chromestatus.com/feature/5756963046555648 Not looked into the details yet, but this can cause the window to scroll to the...
[Psalm 4.8](https://github.com/vimeo/psalm/releases/tag/4.8.0) and [PHPStan 0.12.97](https://github.com/phpstan/phpstan/releases/tag/0.12.97) have recently introduced the `literal-string` type, which is used to "distinguish strings from a trusted developer, from strings that may be attacker controlled". This helps...
Ticket: https://core.trac.wordpress.org/ticket/52506 Change: https://core.trac.wordpress.org/changeset/53575 With WordPress 6.1 ([October 2022](https://make.wordpress.org/core/2022/06/23/wordpress-6-1-planning-roundup/)), the `%i` placeholder will provide a safe way to escape Identifiers (e.g. table/field names). Technically it's not needed if the variable...
User data can include invalid characters, e.g. "\xF6" which is an `ö` in ISO-8859-1, but invalid for UTF-8. Invalid characters can be replaced with a `"?"`, by using `mb_convert_encoding($string, 'UTF-8',...