Google Git
Sign in
chromium / chromium / src / 1a6748ba9cfb1bb961e5f62580c30958bca5d55f
commit1a6748ba9cfb1bb961e5f62580c30958bca5d55f[log] [tgz]
authormkwst <mkwst@chromium.org>Mon Oct 24 11:05:58 2016
committerCommit bot <commit-bot@chromium.org>Mon Oct 24 11:08:10 2016
tree9f1bf3474caf38aef42a13df985185b483521b33
parent18d3734940ccbc96eff5246e2d6235145d44a59e [diff]
Remove the 'reflected-xss' directive from CSP.

This was removed from CSP2, never added to CSP3, and will not ship in
any other browser. We should remove it, as it is completely redundant
with `X-XSS-Protection`, which is never going away.

Intent to Remove: https://groups.google.com/a/chromium.org/forum/#!topic/blink-dev/gjB93RpF6JY

R=jochen@chromium.org
BUG=657737

Review-Url: https://codereview.chromium.org/2428473004
Cr-Commit-Position: refs/heads/master@{#427040}
251 files changed
tree: 9f1bf3474caf38aef42a13df985185b483521b33
  1. android_webview/
  2. apps/
  3. ash/
  4. base/
  5. blimp/
  6. blink/
  7. breakpad/
  8. build/
  9. build_overrides/
  10. cc/
  11. chrome/
  12. chrome_elf/
  13. chromecast/
  14. chromeos/
  15. components/
  16. content/
  17. courgette/
  18. crypto/
  19. dbus/
  20. device/
  21. docs/
  22. extensions/
  23. gin/
  24. google_apis/
  25. google_update/
  26. gpu/
  27. headless/
  28. infra/
  29. ios/
  30. ipc/
  31. jingle/
  32. mash/
  33. media/
  34. mojo/
  35. native_client_sdk/
  36. net/
  37. pdf/
  38. ppapi/
  39. printing/
  40. remoting/
  41. rlz/
  42. sandbox/
  43. sdch/
  44. services/
  45. skia/
  46. sql/
  47. storage/
  48. styleguide/
  49. testing/
  50. third_party/
  51. tools/
  52. ui/
  53. url/
  54. .clang-format
  55. .git-blame-ignore-revs
  56. .gitattributes
  57. .gitignore
  58. .gn
  59. AUTHORS
  60. BUILD.gn
  61. CODE_OF_CONDUCT.md
  62. codereview.settings
  63. DEPS
  64. LICENSE
  65. LICENSE.chromium_os
  66. OWNERS
  67. PRESUBMIT.py
  68. PRESUBMIT_test.py
  69. PRESUBMIT_test_mocks.py
  70. WATCHLISTS