Contact emails
Spec
https://w3c.github.io/webappsec/specs/content-security-policy/#directive-manifest-src
Summary
Allows setting a CSP policy for fetching the Web App Manifest
Link to “Intent to Implement” for Web App Manifest:
https://groups.google.com/a/chromium.org/forum/#!topic/blink-dev/qz2pd3MFPKg
Is this feature supported on all five Blink platforms (Windows, Mac, Linux, Chrome OS, WebView, Android)?
Yes
Compatibility Risk
Small. The feature has been deeply discussed with the WebAppSec group and the editors of the Web App Manifest, and it is now being implemented in Firefox: https://bugzilla.mozilla.org/show_bug.cgi?id=1089255
Developers are also having problems with it not being enabled in Chrome currently: https://github.com/h5bp/html5boilerplate.com/issues/133#issuecomment-97743407
Link to entry on the feature dashboard
https://www.chromestatus.com/features/5679927315660800To unsubscribe from this group and stop receiving emails from it, send an email to blink-dev+...@chromium.org.
Compatibility Risk
Small. The feature has been deeply discussed with the WebAppSec group and the editors of the Web App Manifest, and it is now being implemented in Firefox: https://bugzilla.mozilla.org/show_bug.cgi?id=108925
To unsubscribe from this group and stop receiving emails from it, send an email to blink-dev+...@chromium.org.
The feature is implemented already, and I already have a patch enabling it by default, so my answer would be the earliest release possible
Kenneth
Compatibility Risk
Small. The feature has been deeply discussed with the WebAppSec group and the editors of the Web App Manifest, and it is now being implemented in Firefox: https://bugzilla.mozilla.org/show_bug.cgi?id=1089255
Developers are also having problems with it not being enabled in Chrome currently: https://github.com/h5bp/html5boilerplate.com/issues/133#issuecomment-97743407