Titouan Rigoudy
Titouan Rigoudy
Friendly ping!
cc @alhijazi who was curious about this.
Right, as I recall one of the problems you ran into with pytype is that it did not support 3.11, whereas this does (edit: this changed, see below). It also...
> I think that sounds fine to me, if it's OK with @letitz. One thing I want to revisit: From the security pov, I think a same-origin CORS request is...
Rebased this PR, and added it to `python butler.py lint` in the way we chatted about last week: only changed files are typechecked. This is still likely to raise a...
Latest commit adds a `--type-check` argument to `butler.py lint` that controls whether to run the type checker or not, it defaults to false. I can switch it back to true...
Another option is to set pyright to only output warnings. This annoyingly requires explicitly listing all diagnostic types and setting them to `"warning"` in `pyrightconfig.json`, but it's not terribly hard.
cc @arturjanc
cc @engedy
That's true! `crossOriginIsolated` has no bearing on threats outside the web content area. What I find somewhat unintuitive about these APIs is precisely that the most dangerous surface to be...