| |
ID ▼ |
Type ▼ |
Status ▼ |
Priority ▼ |
Milestone ▼ |
Owner ▼ |
|
Summary + Labels ▼ |
... |
|---|
| |
63 |
Defect
|
Accepted
|
Low
|
----
|
mikesamuel
|
|
Implement plugin_dispatchEvent___ to properly gate form submission
Security
DOMado
|
|
| |
201 |
Refactoring
|
New
|
Low
|
----
|
----
|
|
Unify ParseTreeNode and AbstractParseTreeNode
|
|
| |
206 |
Refactoring
|
New
|
Low
|
----
|
----
|
|
Audit mutability of parse tree nodes
|
|
| |
207 |
Refactoring
|
New
|
Low
|
----
|
----
|
|
Get rid of Identifier vs. Reference distinction
|
|
| |
208 |
Refactoring
|
New
|
Low
|
----
|
----
|
|
Expression vs. Statement vs. ExpressionStmt
|
|
| |
209 |
Refactoring
|
New
|
Low
|
----
|
----
|
|
Make our rewriter GWT compatible
|
|
| |
212 |
Refactoring
|
New
|
Low
|
----
|
----
|
|
Immutable parse tree nodes
|
|
| |
221 |
Defect
|
New
|
Low
|
----
|
ihab.awad
|
|
Refactor rewrite rules such that each has only one match/substitute line
Maintainability
|
|
| |
248 |
Defect
|
New
|
Low
|
----
|
----
|
|
local var with same name as function
|
|
| |
253 |
Defect
|
Accepted
|
Low
|
----
|
jasvir
|
|
Eclipse plugin does no markup when there is an error parsing javascript
|
|
| |
280 |
Refactoring
|
New
|
Low
|
----
|
----
|
|
Refactoring: split parseIdentifier() and parseIdentifierOrReservedWord()
|
|
| |
293 |
DocDefect
|
Accepted
|
Medium
|
----
|
erights
|
|
Missing gotcha in Spec doc: "in"
|
|
| |
331 |
Enhancement
|
Accepted
|
Low
|
----
|
ihab.awad
|
|
Implement and test linkage errors for "readImports"
|
|
| |
338 |
Enhancement
|
New
|
Low
|
----
|
----
|
|
Create caja.manifest(...) function
|
|
| |
371 |
Refactoring
|
Pending
|
Low
|
----
|
----
|
|
Get our default distro building on Ant and Eclipse out of the box.
|
|
| |
381 |
Defect
|
Accepted
|
Medium
|
----
|
erights
|
|
Is 328's fix to 308 overly conservative?
|
|
| |
383 |
Defect
|
New
|
High
|
----
|
ihab.awad
|
|
Function initialization often hoisted too far.
|
|
| |
393 |
Defect
|
New
|
Low
|
----
|
mikesamuel
|
|
Minor new usability annoyance in testbed applet
|
|
| |
397 |
Refactoring
|
New
|
Low
|
----
|
----
|
|
Eliminate use of Identifier nodes with null value
|
|
| |
414 |
Defect
|
Accepted
|
Low
|
----
|
erights
|
|
debugReference() in caja.js is too gullible re argument object.
Security
|
|
| |
435 |
Defect
|
Started
|
High
|
----
|
mikesamuel
|
|
Testbed fails on IE 6 and Safari
|
|
| |
448 |
Defect
|
New
|
Low
|
----
|
erights
|
|
Consider wrapping Math.random()
Security
|
|
| |
449 |
Defect
|
New
|
Low
|
----
|
erights
|
|
Consider wrapping/virtualizing Date zero-arg constructor
Security
|
|
| |
451 |
Defect
|
New
|
Low
|
----
|
erights
|
|
Should fastpathEnumOnly() test for null?
|
|
| |
455 |
Defect
|
New
|
Low
|
----
|
erights
|
|
Confusing diagnostic
|
|
| |
460 |
Defect
|
New
|
Medium
|
----
|
erights
|
|
Caja code can swallow a StackOverflowError, potentially leaving the thrower in an inconsistent state
Security
|
|
| |
461 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Java code can swallow nondeterministic exceptions, potentially leaving the thrower in an inconsistent state
Security
|
|
| |
462 |
Refactoring
|
New
|
Low
|
----
|
----
|
|
Should use Joe-E
|
|
| |
471 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Prefer to avoid hiding/shadowing of variable names?
Maintainability
|
|
| |
472 |
Defect
|
New
|
Medium
|
----
|
zestyping
|
|
Write tests for each of the Cajoler transformation stages
Maintainability
|
|
| |
473 |
DocDefect
|
New
|
Medium
|
----
|
----
|
|
Document the postconditions for each Cajoler transformation stage
Security
Maintainability
|
|
| |
474 |
Defect
|
New
|
Medium
|
----
|
ihab.awad
|
|
Fatal compiler error masking declaration
|
|
| |
475 |
Defect
|
New
|
Medium
|
----
|
jasvir
|
|
URICallback issues
Security
|
|
| |
476 |
Defect
|
New
|
Medium
|
----
|
----
|
|
After Cajoling, statically check that there are no free variables in global function
Security
|
|
| |
478 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Abstract all name-mangling operations
Maintainability
|
|
| |
479 |
Defect
|
New
|
High
|
----
|
ihab.awad
|
|
try/catch behavior differs between Firefox and IE
|
|
| |
488 |
Defect
|
New
|
Medium
|
----
|
----
|
|
JS identifier length not limited (was Risk of too many spicy wunderbars)
Security
|
|
| |
504 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Cajoler should be deterministic
|
|
| |
505 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Avoid static mutables in Cajoler
Security
Maintainability
|
|
| |
506 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Consider separating rewriting from validation in Cajoler
Security
Maintainability
|
|
| |
510 |
Defect,
Refactoring
|
New
|
Medium
|
----
|
----
|
|
Metavariables in match-substitute rules should match the variable name in the Java code
|
|
| |
512 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Need a global configuration flag for "enable insecure mode"
Security
|
|
| |
514 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Sanity check embeddable mode content invariants on rendered code
Security
|
|
| |
525 |
Defect
|
----
|
High
|
----
|
----
|
|
Browser navigation may allow theft of form data from other gadgets
Security
|
|
| |
527 |
Defect
|
Accepted
|
High
|
----
|
mikesamuel
|
|
Password autofill allows modules to steal usernames and passwords
Security
|
|
| |
535 |
DocDefect
|
Accepted
|
Medium
|
----
|
----
|
|
Specify the expected behaviour of all JavaScript constructs used in cajoled code
Security
Maintainability
|
|
| |
538 |
Defect
|
Accepted
|
Medium
|
----
|
----
|
|
Create tests to ensure that no untested JavaScript constructs appear in cajoler output
Security
Maintainability
|
|
| |
542 |
DocDefect
|
Accepted
|
High
|
----
|
erights
|
|
.constructor and .prototype are subtle
Security
Maintainability
|
|
| |
544 |
DocDefect
|
Accepted
|
Medium
|
----
|
erights
|
|
Cajoled libraries might make stronger assumptions than the Caja runtime about .constructor, .prototype etc.
Maintainability
|
|
| |
547 |
DocDefect
|
Accepted
|
Medium
|
----
|
erights
|
|
Should you document why primFreeze isn't needed in certain circumstances?
Security
Maintainability
|
|
| |
550 |
DocDefect
|
New
|
Medium
|
----
|
----
|
|
Document assumptions made by DOMita for correctness
|
|
| |
551 |
DocDefect
|
New
|
Medium
|
----
|
----
|
|
Document the class/id renaming scheme for DOM classes, ids, etc.
Security
Maintainability
|
|
| |
552 |
DocDefect
|
Accepted
|
Medium
|
----
|
erights
|
|
makeSealerUnsealerPair() should document plan interference hazard
Security
|
|
| |
557 |
Defect
|
New
|
Medium
|
----
|
----
|
|
verify javascript toUpperCase is independent of locale
Security
|
|
| |
559 |
Defect
|
Accepted
|
Medium
|
----
|
erights
|
|
directConstructor changes the iteration order on an object that declares a property with name 'constructor'
|
|
| |
563 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Domita doesn't always validate the types of values it returns from DOM objects
Security
|
|
| |
569 |
Refactoring
|
New
|
Medium
|
----
|
----
|
|
Consider writing domita.js in Caja/Cajita
Security
|
|
| |
570 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Run walkProps on various and audit the properties reachable from the global scope
|
|
| |
573 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Container has no say over what kinds of events a gadget sees
|
|
| |
577 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Domita: Several toString() functions aren't whitelisted for Caja
|
|
| |
578 |
DocDefect
|
New
|
Medium
|
----
|
----
|
|
domita should describe its taming decisions
Security
Maintainability
|
|
| |
579 |
Enhancement
|
New
|
Medium
|
----
|
----
|
|
Need another form of DOM attenuation: this node doesn't communicate info from the user to event handlers
DOMado
Security
|
|
| |
593 |
Refactoring
|
Accepted
|
Medium
|
----
|
erights
|
|
Refactor rewriting rules to centralize rejection of illegal names -- those ending in double "_".
Security
Maintainability
|
|
| |
596 |
Defect
|
New
|
Medium
|
----
|
----
|
|
domita.js etc. should be more careful about its use of regexps
Security
|
|
| |
597 |
Defect
|
New
|
Medium
|
----
|
----
|
|
maybe do a browser version test at runtime
|
|
| |
601 |
Refactoring
|
New
|
Medium
|
----
|
----
|
|
validating the syntax generated by cajoler is difficult
Security
|
|
| |
608 |
DocDefect
|
Accepted
|
Medium
|
----
|
----
|
|
Document the contract of each component that performs a security-critical task
Security
Maintainability
|
|
| |
610 |
Task
|
New
|
Low
|
----
|
----
|
|
Domita getAttribute() demangling
|
|
| |
612 |
Refactoring
|
New
|
Low
|
----
|
----
|
|
Private variable access between Scope objects should be refactored
|
|
| |
614 |
Task
|
New
|
Medium
|
----
|
----
|
|
Ideas on ways to try to confuse the runtime HTML sanitizer
Security
|
|
| |
649 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Testbed on Safari on Windows reading http:// and FF on Mac reading file:// fails to cajole
|
|
| |
660 |
Defect
|
Accepted
|
Medium
|
----
|
mikesamuel
|
|
Testbed doesn't work using file: URL on Firefox2 on Mac
|
|
| |
661 |
Defect
|
New
|
Medium
|
----
|
ihab.awad
|
|
DefaultCajaRewriter should not use 'instanceof'
Security
|
|
| |
745 |
Defect
|
Accepted
|
Medium
|
----
|
erights
|
|
In valija, a constructed object's constructor property is enumerable
Prototype
|
|
| |
753 |
Enhancement
|
New
|
Medium
|
----
|
----
|
|
Would be useful to get structured access to error messages from the Caja parser
|
|
| |
771 |
Enhancement
|
New
|
Medium
|
----
|
----
|
|
Add querySelectorAll() to domita
Prototype
|
|
| |
775 |
Enhancement
|
New
|
Medium
|
----
|
----
|
|
Domita Range interface
Prototype
|
|
| |
793 |
Enhancement
|
New
|
Medium
|
----
|
----
|
|
Create stub "Domótico" layer
Prototype
|
|
| |
814 |
Defect
|
Started
|
Medium
|
----
|
erights
|
|
'typeof [].push' is 'object' in Cajita.
Prototype
|
|
| |
836 |
Defect
|
New
|
Low
|
----
|
----
|
|
Need lint warning on nonstandard attributes of script blocks
|
|
| |
856 |
Defect
|
New
|
Medium
|
----
|
----
|
|
In testbed uncajoled and cajoled code behave differently
|
|
| |
875 |
Enhancement
|
Accepted
|
Medium
|
----
|
erights
|
|
typeTag___ trick for instances
Performance
|
|
| |
876 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Some inputs (function hoisting?) crash side by side renderer
|
|
| |
881 |
Defect
|
New
|
Medium
|
----
|
----
|
|
form onsubmit policy is difficult to override
|
|
| |
898 |
Defect
|
Accepted
|
Medium
|
----
|
erights
|
|
Caja violates block scoping of named functions
Security
|
|
| |
899 |
Defect
|
New
|
High
|
----
|
----
|
|
Exception backtrace information is not available in SpiderMonkey/Firebug
|
|
| |
900 |
Defect
|
Started
|
High
|
----
|
mikesamuel
|
|
All demos are broken on Cajadores
|
|
| |
906 |
Defect
|
New
|
Medium
|
----
|
----
|
|
image/svn+xml should be rejected by sanitizing proxies
|
|
| |
926 |
Defect
|
Accepted
|
Medium
|
----
|
mikesamuel
|
|
Cajita cannot access or assign global variables defined by Valija code
|
|
| |
931 |
Defect
|
Started
|
Low
|
----
|
erights
|
|
'arguments' should no longer be an array
|
|
| |
933 |
Defect
|
Accepted
|
Medium
|
----
|
metaweta
|
|
jQuery expects "expando" attributes
jQuery
Security
Prototype
YUI
|
|
| |
943 |
DocDefect
|
Accepted
|
Low
|
----
|
erights
|
|
valija breaks cajita's setBadFreeVariable rule
Security
|
|
| |
952 |
Defect
|
Accepted
|
High
|
----
|
mikesamuel
|
|
Temporaries optimized away too aggressively. Dodged TOCTTOU bullet. Wounded by out-of-order evaluation.
Security
|
|
| |
953 |
Defect
|
Started
|
Medium
|
----
|
erights
|
|
Subjective vs Record inheritance
Prototype
jQuery
|
|
| |
956 |
Defect
|
Started
|
High
|
----
|
erights
|
|
JSONContainer exemption vs Record inheritance
Security
jQuery
|
|
| |
962 |
Defect
|
Started
|
Medium
|
----
|
erights
|
|
TameEvent printing weirdness
Prototype
DOMado
|
|
| |
966 |
Defect
|
Accepted
|
Medium
|
----
|
mikesamuel
|
|
Support full JSON2 API
|
|
| |
976 |
Defect
|
New
|
Medium
|
----
|
jasvir
|
|
Testbed swallowing exceptions silently
Maintainability
|
|
| |
977 |
Task
|
New
|
Medium
|
----
|
----
|
|
Review recent vulnerabilities in SpiderMonkey and Firefox for relevance to Caja
Security
|
|
| |
989 |
Defect
|
New
|
Medium
|
----
|
----
|
|
Valija is no longer statically rejecting forbidden names
Usability
Maintainability
|
|