mikewest

@googlers Munich, Germany

Pinned Repositories

cookie-incrementalism
Incrementally better cookies.
Language:HTML22 7 13
cookies-over-http-bad
Archived proposal from 2018. Perhaps the approach in mikewest/scheming-cookies will be more successful!
51 8 66
credentialmanagement
Credential Management
Language:CSS29 8 48
http-state-tokens
Incrementally better HTTP state management.
Language:HTML301 25 129
jslint-utils
Wrapper scripts for running JSLint locally, and for generating test reports for Hudson
Language:JavaScript32 2 27
nginx-static-etags
Nginx doesn't generate etags for static content. I'd like it to. Let's see if I can remember some C from college.
Language:C76 7 323
privacy-budget
207 67 1623
securer-contexts
Secure Contexts, but with _more_ secureness!
20 8 72
tc39-proposal-literals
Literals could be different than non-literals.
32 10 32
vimroom
Simulating a vaguely WriteRoom-like environment in Vim.
Language:Vim Script339 16 2940

mikewest's Repositories

mikewest/http-state-tokens
Incrementally better HTTP state management.
Language:HTML301 25 129
mikewest/privacy-budget
207 67 1623
mikewest/securer-contexts
Secure Contexts, but with _more_ secureness!
20 8 72
mikewest/baseline-header
What if developers could opt-into better default behaviors en masse, forcing them to pick and choose the legacy risks they want to enable.
19 3 20
mikewest/deprecating-document-domain
`document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?
17 6 15
mikewest/homedir
Public home directory files
Language:PHP12 4 0
mikewest/sanitizer-playground
A demonstration of the HTML Sanitizer API.
Language:HTML11 2 14
mikewest/deprecate-it
Deprecate it.
Language:HTML9 5 0
mikewest/mitigation-supply
Mitigations. Supplied.
Language:HTML6 4 13
mikewest/mikewest.org
Language:HTML4 5 0
mikewest/privacy-policy-discovery
Policy documents should be discoverable.
Language:HTML3 1 1
mikewest/injection-mitigated
`[InjectionMitigated]` WebIDL Attribute
Language:HTML2 1 1
mikewest/origin-api
An `Origin` object might be nice to have.
Language:Bikeshed2
mikewest/placid
A manifest v3 (and modified) version of Palmerized Chrome.
Language:HTML2
mikewest/purposeful-permissions
2 3 1
mikewest/a-priori-resource-assertions
Wouldn't it be nice if we could know things about a server's response _before_ we receive it?
1
mikewest/anti-exfil
Language:Bikeshed1
mikewest/incentivize-origin-checks
Perhaps we can help developers prioritize origin checks in `MessageEvent` handlers.
1
mikewest/inline-integrity
Inline integrity.
Language:Bikeshed11
mikewest/pepc-install
An `<install>` element might be nice.
1
mikewest/progress
A progress bar. Nothing interesting.
Language:HTML1 2 0
mikewest/scratchpad
Language:HTML1 1 01
mikewest/content
The content behind MDN Web Docs
Language:Markdown1 0
mikewest/draft-pardue-http-identity-digest
A field to send the unencoded digest of HTTP things
mikewest/html
HTML Standard
mikewest/observable
Observable API proposal
mikewest/rfc9421-sri-profile
A profile of HTTP Message Signatures appropriate for integrity/provenance validation.
Language:Makefile
mikewest/sha2-it
Language:HTML
mikewest/summernote
Super simple WYSIWYG editor
Language:JavaScript1 0
mikewest/webappsec-dbsc
Device Bound Session Credentials: A Protocol for Protecting From Cookie Theft