We currently send a CAAnimation's keyPath over IPC as a String. We should send this as a struct for the string to be generated in the UI Process for added security.
rdar://102433824
Pull request: https://github.com/WebKit/WebKit/pull/8587
Simon suggested that we keep using strings to represent animation key paths but instead validate the string in the UIProcess once received before creating the CAAnimation. Renaming bug to track this effort.
Pull request: https://github.com/WebKit/WebKit/pull/8680
Committed 258986@main (a4467affde12): <https://commits.webkit.org/258986@main> Reviewed commits have been landed. Closing PR #8680 and removing active labels.
Re-opened since this is blocked by bug 250744
Pull request: https://github.com/WebKit/WebKit/pull/8760
Committed 259066@main (f554fc01c126): <https://commits.webkit.org/259066@main> Reviewed commits have been landed. Closing PR #8760 and removing active labels.
Re-opening for pull request https://github.com/WebKit/WebKit/pull/9466
Mistakenly re-opened this, closing it again.