... The source is out there, and you are certainly welcome to adapt it. My energies are now focused on repairing ECMAScript and HTML/DOM, ultimately making...
Mark and Mike, This is really a great discussion -- thanks for detailing out the current state of ECMA Script 5, SES, and the overall feel of where things are...
327
Mark S. Miller
erights@...
May 27, 2010 1:53 am
Caution: I tend to err on the side of too much detail. Apologies in advance. ... We are always very happy to hear when others come think in these terms as ...
2010/5/26 adam.kumpf <adam.kumpf@...> ... Mark (CCed) can correct me if I say anything wrong. ECMA approved EcmaScript 5 which has a strict mode removes...
... Thanks for the additional clarity of the evolving ADsafe/Caja landscape. You and Doug are both on to a fundamental shift in how the web works, and more...
2010/5/24 adam.kumpf <adam.kumpf@...> ... ADsafe is a beautiful piece of work and you are right about transformation having downsides. Our strategy thus...
I don't think the transformation has that big of a cost. Debugging isn't that bad since you can debug before transformation, and transformation doesn't affect...
... Caja is a great idea, but it has some large fundamental limitations. As I see it, since the code is transformed irreversibly it is significantly harder to...
A final reminder... W2SP 2010: Web 2.0 Security and Privacy 2010 Thursday, May 20 The Claremont Resort, Oakland, California Web site: http://w2spconf.com/2010 ...
... CanvasRenderingContext2D ... dangerous!! ... include the canvas element). Although the returned type is no longer a CanvasRenderingContext2D. Trying to...
I added a getContext method. It makes it possible to draw on a <canvas>. I am now logging all errors to ADSAFE.log as a convenience for developers....
313
Mark S. Miller
erights@...
Apr 13, 2010 12:44 am
Call for Papers / Call for Participation: First workshop on Decentralized Coordination of Distributed Processes (DCDP 2010) http://soft.vub.ac.be/events/dcdp ...
A quick reminder... This is announcement of the call for papers for the fourth in a series of successful workshops on topics related to security and privacy...
This is announcement of the call for papers for the fourth in a series of successful workshops on topics related to security and privacy for Web 2.0. This...
310
Collin Jackson
collin.jackson@...
Dec 14, 2009 12:50 am
This is announcement of the call for papers for the fourth in a series of successful workshops on topics related to security and privacy for Web 2.0. This...
What's the recommended idiom for iterating over the elements of an array? I had been using: for (var i = 0; i !== v.length; i += 1) { var element = v[+i]; ... ...
... This produces a bunch from which all text nodes containing only whitespace are removed I added these bunch methods: .each(func) The function is called for...
The ADsafe verifier now rejects programs that use the arguments pseudo array. The ADsafe verifier now rejects programs that use expressions with the subscript...
I repaired some leakage in the ADsafe Ajax library. Grateful thanks to John Mitchell, Sergio Maffeis, and Ankur Taly. http://www.doc.ic.ac.uk/~maffeis/ I also...
We should add tests though to make sure we stay invulnerable to that. 2009/7/29 Mike Stay <metaweta@...> ... We should add tests though to make sure we...
Hey I wanted to let you guys know that for now I'm discontinuing research on FBJS2. Basically at this time instead we're focusing on Facebook Connect (external...
Hi folks, Joel was playing around with ADsafe today and noticed that the verifier seems to be broken at the moment. For example, this widget passes the...
