274253 – Trusted types fails to protect against a script edited mid-parse

RESOLVED FIXED 274253

Trusted types fails to protect against a script edited mid-parse

https://bugs.webkit.org/show_bug.cgi?id=274253

Summary Trusted types fails to protect against a script edited mid-parse

Luke Warlow

Reported 2024-05-16 05:33:27 PDT

It's possible for a script to be edited by JS before it's finished parsing. In these cases they should trigger a trusted types violation.

Attachments
Add attachment proposed patch, testcase, etc.

Luke Warlow

Comment 1 2024-05-16 05:36:41 PDT

Radar WebKit Bug Importer

Comment 2 2024-05-23 05:34:13 PDT

EWS

Comment 3 2024-05-23 13:09:47 PDT

Committed 279225@main (c31d9c40707d): <https://commits.webkit.org/279225@main> Reviewed commits have been landed. Closing PR #28648 and removing active labels.

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version Safari 17

Hardware Unspecified

OS Unspecified

Product WebKit

Component DOM

Assignee

Luke Warlow

Reported

2024-05-16 05:33 PDT

Modified

2024-05-23 13:09 PDT History

CC List

1 user Show

URL

Keywords InRadar

Depends on

269365

Blocks

266630 274519

Dependencies

tree graph