Bug 248066 - Block loading remote content in console message style formatter.
Summary: Block loading remote content in console message style formatter.
Status: RESOLVED FIXED
Alias: None
Product: WebKit
Classification: Unclassified
Component: Web Inspector (show other bugs)
Version: WebKit Nightly Build
Hardware: Unspecified Unspecified
: P2 Normal
Assignee: Ryan Reno
URL:
Keywords: InRadar
Depends on:
Blocks:
 
Reported: 2022-11-17 16:13 PST by Ryan Reno
Modified: 2022-11-18 10:10 PST (History)
2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Ryan Reno 2022-11-17 16:13:00 PST 
The console spec doesn't specify the behavior of the %c formatter. There isn't a great use case for loading remote content in any of our allowed CSS properties so we should block the use of url and src CSS functions.
Comment 1 Ryan Reno 2022-11-17 16:13:15 PST 
<rdar://problem/101434152>
Comment 2 Ryan Reno 2022-11-17 16:15:42 PST 
Pull request: https://github.com/WebKit/WebKit/pull/6613
Comment 3 EWS 2022-11-18 10:10:47 PST 
Committed 256840@main (e0bf4081c1a0): <https://commits.webkit.org/256840@main>

Reviewed commits have been landed. Closing PR #6613 and removing active labels.