[webkit-dev] Request for position: COEP: credentialless

Hi webkit-dev, This is a request for Webkit's position on Cross-Origin-Embedder-Policy:credentialless *Summary:* Credentialless is a Cross-Origin-Embedder-Policy (COEP) variant. Similarly to require-corp, it can be used to enable cross-origin-isolation. COEP:credentialless causes no-cors cross-or

Re: [webkit-dev] Request for position: preferCurrentTab

We could rename to preferCurrentBrowserDisplaySurface, referencing a browser display-surface , but I find it to be a mouthful. But I'm open to suggestions. Name notwithstanding, what is Apple's official, quotable position? :-) On Thu, J

Re: [webkit-dev] Request for position: preferCurrentTab

Hi Elad, At the time of getDisplayMedia design, people advocated against the ability for a web page to influence or restrict user choice, for security reasons. Doesn't this property go against that conscious design decision? What is your security analysis here? Also, getCurrentViewPort is trying

[webkit-dev] Request for Position: CSS Module Scripts

Hi WebKit-dev, I'd like to ask for WebKit's official position on CSS Module Scripts, as described in the explainer at [1]. This proposal allows developers to import a CSSStyleSheet using the same import mechanism as JavaScript Modules: import styleSheet from "./styles.css" assert { type: "css"