314240 2026-05-06 14:25:28 -0700 [Site Isolation] http/tests/security/mixedContent/insecure-css-with-secure-cookies-UpgradeMixedContent.html is flaky on macOS Site Isolation post-commit 2026-05-08 11:13:44 -0700 1 1 1 Unclassified WebKit New Bugs WebKit Nightly Build Unspecified Unspecified RESOLVED FIXED InRadar P2 Normal --- 1 a.tarbinian webkit-unassigned webkit-bug-importer oldest_to_newest 2208285 0 a.tarbinian 2026-05-06 14:25:28 -0700 The test is failing flakily with the following diff on macOS post-commit bots ``` --- /Volumes/Data/worker/Apple-Tahoe-Release-WK2-Site-Isolation-Tree-Tests/build/layout-test-results/http/tests/security/mixedContent/insecure-css-with-secure-cookies-UpgradeMixedContent-expected.txt +++ /Volumes/Data/worker/Apple-Tahoe-Release-WK2-Site-Isolation-Tree-Tests/build/layout-test-results/http/tests/security/mixedContent/insecure-css-with-secure-cookies-UpgradeMixedContent-actual.txt @@ -1,4 +1,2 @@ CONSOLE MESSAGE: secureCookie=yes -CONSOLE MESSAGE: The page at https://127.0.0.1:8443/security/mixedContent/resources/frame-with-insecure-css-secure-cookies.html requested insecure content from http://127.0.0.1:8080/security/resources/greenbox-hotspot5-4.cur. This content was automatically upgraded and should be served over HTTPS. - This test opens a window that loads a secure style sheet with insecure cursor content after reading secure cookies. This should be allowed because loading of the insecure cursor does not pose a security risk since it can only affect the display. ``` 2208286 1 webkit-bug-importer 2026-05-06 14:25:34 -0700 <rdar://problem/176396263> 2208293 2 a.tarbinian 2026-05-06 14:39:56 -0700 Pull request: https://github.com/WebKit/WebKit/pull/64396 2208332 3 ews-feeder 2026-05-06 16:02:39 -0700 Committed 312746@main (a3d8b660f640): <https://commits.webkit.org/312746@main> Reviewed commits have been landed. Closing PR #64396 and removing active labels. 2209075 4 a.tarbinian 2026-05-08 11:13:44 -0700 Several runs have been passing after this merged. https://results.webkit.org/?suite=layout-tests&test=http%2Ftests%2Fsecurity%2FmixedContent%2Finsecure-css-with-secure-cookies-UpgradeMixedContent.html&flavor=site-isolation