On Thu, Feb 23, 2017 at 03:55:43AM +0000, Richard Wang via dev-security-policy wrote: > If "apple", "google", "Microsoft" is not a high risk domain, then I don’t > know which domain is high risk domain, maybe only "github".
That's kinda the problem: you don't know, and neither does anyone else, because there's no agreed-upon definition or policy for what constitutes a "high risk domain". - Matt _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy