Post-Spectre Web Development
OTHER License
WoT Security Best Practices
a repo exclusively for security to better manage issues and security considerations for WoT
User Interface Security and the Visibility API
Web Application Security Working Group repo
WebAppSec Upgrade Insecure Requests
Materials for a proposed W3C workshop "Secure the Web Forward"
WebAppSec Mixed Content
Web security drafts
WebAppSec Confinement Origin Web Labels
WebAppSec Subresource Integrity
Performance APIs, Security and Privacy
Content Security Policy: Embedded Enforcement
What is browser fingerprinting and how should specification authors address it.
WebAppSec Secure Contexts