Remove the XSS Auditor from Chrome.

Motivation

The XSS Auditor can introduce cross-site information leaks and mechanisms to bypass the Auditor are widely known.

Documentation

Specification

Specification link


Proposal in a personal repository, no adoption from community

Status in Chromium

Blink>SecurityFeature


Removed (tracking bug)

Consensus & Standardization

After a feature ships in Chrome, the values listed here are not guaranteed to be up to date.

  • No signal
  • Shipped/Shipping
  • No signal
  • Positive

Owner

Intent to Prototype url

Intent to Prototype thread

Search tags

XSS, Security,

Last updated on 2021-03-12