What security vulnerability becomes possible with native CSS-in-canvas support t... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		adtac on March 22, 2024 \| parent \| context \| favorite \| on: Show HN: Dropflow, a CSS layout engine for node or... What security vulnerability becomes possible with native CSS-in-canvas support that's not already possible today? Or becomes easier?

Sesse__ on March 22, 2024 [–]

As I understand the proposal, everything about visited link colors, for instance. Lots of cross-origin leaks. New forms of image leaks.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact