Punting this up to steering. I'm not even sure who to bother, any more.
On Tue, Dec 20, 2022 at 9:13 AM CJ Cullen <
cjcu...@google.com> wrote:
>
> -reporter
> +Tim Hockin
>
> Does
kubernetes.io need a GDPR banner? Definitely not something that the SRC needs to handle, but I'm not sure who to loop in. thockin@ do you know who to kick this to?
>
> Thanks,
> -CJ
>
> On Sat, Dec 10, 2022 at 2:21 AM Michalk <
mbopen...@gmail.com> wrote:
>>
>> Hi,
>>
>> At this moment there is no cookies banner/window (needed by GDPR for instance), about Allow / Deny action.
>>
>> Repro steps:
>> 1. Go to:
https://kubernetes.io/
>> 2. Scroll down and up, note that cookies banner is missing
>> 3. Open F12 DevTools and see Cookies tab - are used
>> (for example you can use with private mode Firefox and Chromium based - Chrome browser)
>>
>> PoC:
>> Used VPN with EU IP address with different browsers and can't see cookies banner.
>>
>> Impact: High - all site visitors
>>
>> Best regards,
>> Michal
>>
>> --
>> You received this message because you are subscribed to the Google Groups "security" group.
>> To unsubscribe from this group and stop receiving emails from it, send an email to
security+u...@kubernetes.io.
>> To view this discussion on the web visit
https://groups.google.com/a/kubernetes.io/d/msgid/security/CALFsku%3DHeafRHqpx-ij-nA_SXmTckFSDQP1%3D5XWNx5kVXSSc0g%40mail.gmail.com.