ep90 Monthly Web 202111
- published_at
- 2021-12-13
- guest
- @myakura
- toc
-
headings
Theme
第 90 回のテーマは 2021 年 11 月の Monthly Web です。
Show Note
Chrome 動向
Stable: 96
Updates
-
New in Chrome 96 - Chrome Developers
- https://developer.chrome.com/en/blog/new-in-chrome-96/
- Manifest id for PWAs
- URL protocol handlers for PWAs
- Priority hints (origin trial)
- Emulate Chrome 100 in the UA string
- Chrome Dev Summit
-
And more!
- bfcache is available
-
What's New In DevTools (Chrome 96) - Chrome Developers
- https://developer.chrome.com/en/blog/new-in-devtools-96/
- Preview feature: New CSS Overview panel
-
Rendering tab updates
- Emulate the CSS prefers-contrast media feature
- Emulate the Chrome's Auto Dark Theme feature
- Copy declarations as JavaScript in the Styles pane
- New Payload tab in the Network panel
- Improved the display of properties in the Properties pane
-
Console updates
- Option to hide CORS errors in the Console
- Proper Intl objects preview and evaluation in the Console
- Consistent async stack traces
- Retain the Console sidebar
- Deprecated Application cache pane in the Application panel
- [Experimental] New Reporting API pane in the Application panel
-
Chromium Blog: Chrome 97: WebTransport, New Array Static Methods and More
- https://blog.chromium.org/2021/11/chrome-97-webtransport-new-array-static.html
- Preparing for a Three Digit Version Number
-
Features in this Release
- Auto-expand Details Elements
- Content-Security-Policy Delivery via Response Headers for Dedicated Workers.
-
CSS
- font-synthesis Property
- transform: perspective(none)
- Feature Policy for Keyboard API
- HTMLScriptElement.supports() Method
- Late Newline Normalization in Form Submission
- Standardize Existing Client Hint Naming
- WebTransport
-
JavaScript
- Array and TypedArray findLast() and findLastIndex()
-
Deprecations and Removals
- Remove SDES Key Exchange for WebRTC
- Remove WebSQL in Third-Party Contexts
- Remove SDP Plan B
-
What's New In DevTools (Chrome 97) - Chrome Developers
- https://developer.chrome.com/en/blog/new-in-devtools-97/
- Preview feature: New Recorder panel
- Refresh device list in Device Mode
- Autocomplete with Edit as HTML
- Improved code debugging experience
- [Experimental] Syncing DevTools settings across devices
-
Deprecations and removals in Chrome 97 - Chrome Developers
- https://developer.chrome.com/en/blog/deps-rems-97/
- Remove SDES key exchange for WebRTC
- Remove WebSQL in third-party contexts
- Remove SDP Plan B
-
Chrome Dev Summit
- https://www.youtube.com/watch?v=lNecNY6vDek
- Keynote で Flash を HTML5 に終わらせられた Adobe の VP が Photoshop PWA で、 「Web でなんでもできる」って話をしてて感慨深い。
Intents
-
Prototype: Capability Delegation
- https://groups.google.com/a/chromium.org/g/blink-dev/c/9CeLYndESPE
targetWindow.postMessage("process_payment", {delegate: "payment"});- 的な感じに特定のフレームに Policy を delegate できる
-
Prototype: HTMLInputElement showPicker()
- https://groups.google.com/a/chromium.org/g/blink-dev/c/fEebe5uXQ1I
- 日付、色、ファイルなどのピッカーを JS から読み出せる
- Prototype: LCP support for animated images/auto-playing videos
- Prototype: Sec-CH-UA-Full-Version-List user-agent client hint
- Prototype: State extension for JS Self-Profiling API
- Prototype: Web app translations
-
Prototype: 'blocking=rendering' attribute on scripts and link resources
- https://groups.google.com/a/chromium.org/g/blink-dev/c/ujX8Vbr_VFE/m/Z61eyTcoBAAJ
- 明示的に blocking を要求する属性
- Flash of Unstyled Contents (FOUC) などを防ぐ
-
Prototype: Dark mode support for web apps
- https://groups.google.com/a/chromium.org/g/blink-dev/c/Y6zNtG0f-6A/m/cOhkfVGSBAAJ
- manifest に theme と background の color を指定できる
- Prototype: High Dynamic Range Support for HTMLCanvasElement
- Prototype: Web Neural Network API (WebNN)
- Prototype: Web Machine Learning: Model Loader API
-
Prototype: NDEFReader makeReadOnly()
- https://groups.google.com/a/chromium.org/g/blink-dev/c/iyljeGnIct8/m/tonTVszmCAAJ
- NFC を永久に読み取り専用にする
- 悪意のある上書きを防ぐための手段
-
Prototype: Allow cookie domain attributes to be the empty string
- https://groups.google.com/a/chromium.org/g/blink-dev/c/kcvn81WtlvM
- 今の Chrome は Cookie の Domain 属性が空文字だと仕様と違う動きをする
- これを仕様(RFC6265bis) に準じるように直す。
- 互換性もあがり、 WPT も通る。
- Prototype: Presentation API: Site-initiated mirroring
- Prototype: Declarative Link Capturing for PWAs
- Prototype: OffscreenCanvas
- Prototype and Ship: self.structuredClone
- Ship: CSS Color Adjust: 'only' keyword for color-scheme
- Ship: WebRTC Scalable Video Coding extensions
- Ship: auto keyword for contain-intrinsic-size
- Ship: forced-color-adjust: preserve-parent-color
- Ship: AudioContext.outputLatency
- Ship: New window.open() popup vs. window behavior
- Ship: Remove font-family -webkit-standard
- Ship: Pickling for Async Clipboard API
-
Ship: Propagate request origin and redirect chain in passthrough service workers.
- https://groups.google.com/a/chromium.org/g/blink-dev/c/Ioyd2SfcqCI/m/tlIS4cZLBgAJ
- これまでは SW で
fetch(e.request)したら、リダイレクトでも Origin が SW の Origin になった。 - Origin ヘッダと SameSite Cookie の挙動を正すためにこれを直す。
-
Ship: Private Network Access preflight requests for subresources
- https://groups.google.com/a/chromium.org/g/blink-dev/c/72CK2mxD47c/m/Tl59oNfABwAJ
- Private Network に対する subresource request に preflight を必須にする
- 展開のフェーズは 4 段階
- 1: Preflight を送るが結果は無視しエラー表示、本来のリクエストも送る。
- 2: 3 リリース様子見
- 3: Preflight の結果を遵守。かつ deprecation trial を開始。
- 4: 4 リリース後に deprecation trial を終了
- Ship: Convert adoptedStyleSheets to use ObservableArray
-
Ship: CSS cascade layers
- https://groups.google.com/a/chromium.org/g/blink-dev/c/ZCN2tBZ2cUY/m/BQAcIIjFCAAJ
@layer {}block を定義し、 CSS のブロックをレイヤーに分けられるように@layerrule でレイヤーの優先順位を決められる- カスケードはレイヤー内で行われ、別の(優先度の低い)レイヤーによる意図しない上書きを予防できるようになる
- Gecko: In development
- WebKit: Shipped/Shipping
- Web developers: Strongly positive
-
Ship: Sec-CH-UA-Full-Version-List user-agent client hint
- https://groups.google.com/a/chromium.org/g/blink-dev/c/yZh8Lwr34Ro
- https://github.com/WICG/ua-client-hints/issues/196
- major version 以下のシリアライズ方法(桁数)がブランドによるので全部必要な場面がある
- Ship: Pickling for Async Clipboard API
- Ship: Supports keyword format in @font-face src descriptor
-
Ship: Allow
infinity,-infinityandNaNin CSScalc() -
Ship: replace GamepadList with sequence for
navigator.getGamepads()return value -
Ship: Handwriting Recognition API
- https://groups.google.com/a/chromium.org/g/blink-dev/c/s3n3bGl6i1M/m/-WWoNcZTDAAJ
- Question about Shipping vs Continue Experimenting
- Ship: Intl Enumeration API (for m99)
- Ship: Intl Locale Info in ECMA402 (for m99)
- Experiment: Web app launch handler
- Experiment: Dark mode support for web apps
- Experiment: Intl Enumeration API (for m99)
- Extend Origin Trial: Subresource loading with Web Bundles
- Extent Origin Trial: WebGPU
- Deprecate: Standardize existing client hint naming
- Deprecate and Remove: Calling PaymentRequest.show without user activation
- Request for (Extending) Deprecation Trial: [WebRTC] Deprecate and Remove Plan B
V8
- WebAssembly Dynamic Tiering ready to try in Chrome 96 · V8
- Oilpan library · V8
Other
-
web.dev
-
Everything announced at Chrome Dev Summit 2021
- https://web.dev/cds2021-updates/
- Make the web more interoperable #
- Allow new classes of applications to run on the web #
- Ensure privacy #
- Improve Core Web Vitals #
- Enable new web platform features #
- Help you to create beautiful and responsive sites #
- Provide courses to help you learn web technology #
- What's new in PageSpeed Insights
- Lighthouse user flows
- Towards an animation smoothness metric
- Feedback wanted: An experimental responsiveness metric
- Picking colors of any pixel on the screen with the EyeDropper API
- Building an effective Image Component
- Photoshop's journey to the web
- The UI fund
- SVGcode: a PWA to convert raster images to SVG vector graphics
- Building a 3D game menu component
- Kapwing: Powerful video editing for the web
- Building a toast component
-
Everything announced at Chrome Dev Summit 2021
-
google developer blog
- Google Developers Blog: Improve your development workflow with Interactive Canvas DevTools
-
google developer japan blog
- Google Developers Japan: OS ログイン時に PWA を起動する
- Google Developers Japan: Chrome の検索、ブラウズ、シャットダウン時のパフォーマンスを改善
- Google Developers Japan: Chrome 96: 条件に応じたフォーカスや優先度ヒントなどの新機能
- Google Developers Japan: Payment Request API で "basic-card" 支払い方法の提供が終了
- Google Developers Japan: Google OAuth の段階的な認証の改善について
- Google Developers Japan: Chrome OS での Chrome アプリのサポートを延長
-
chrome developer blog
- Force Chrome major version to 100 in the User-Agent string - Chrome Developers
- Progress in the Privacy Sandbox (October 2021) - Chrome Developers
- Implementing CSP and Trusted Types debugging in Chrome DevTools - Chrome Developers
- Helping developers build powerful, installable web apps - Chrome Developers
- What's new in Lighthouse 9.0 - Chrome Developers
-
chromium blog
- Chromium Blog: Chrome Dev Summit 2021: Moving toward a more powerful and private web
- Chromium Blog: Run on OS Login
- Chromium Blog: Searching, browsing, and shutdown Chrome performance improvements
- Chromium Blog: Chrome on Windows performance improvements and the journey of Native Window Occlusion
- Chromium Blog: Faster Chrome - Let The Compiler do the work
- Chromium Blog: Simplified Storage Controls
- Chromium Blog: Partitioning Chrome's Code for Faster Launch Times on Android
-
search central
- 2021 年におけるモバイル インデックス登録に関する最新情報 | Google 検索セントラル ブログ | Google Developers
- Google 検索セントラル 1 周年 | Google 検索セントラル ブログ | Google Developers
- パソコン向けページ エクスペリエンスによるランキングの導入スケジュール | Google 検索セントラル ブログ | Google Developers
- canary
-
Introducing Bento – The AMP Blog
- https://blog.amp.dev/2021/12/08/introducing-bento/
<bento-fit-text>Hello World!</bento-fit-text>| bentojs.dev- https://bentojs.dev/blog/introducing-the-bento-components-library/
- BlinkOn 15
Firefox 動向
Stable: 95.0
Updates
- Firefox 94.0, See All New Features, Updates and Fixes
-
Firefox 94 for developers - Mozilla | MDN
- https://developer.mozilla.org/en-US/docs/Mozilla/Firefox/Releases/94
self.structuredClone()- element.enterKeyHint
script.supports()- ShadowRoot.delegatesFocus
-
Firefox Beta 95.0, See All New Features, Updates and Fixes
- https://www.mozilla.org/en-US/firefox/95.0/releasenotes/
-
Slack のコール機能を動かすために slack.com に UA Sniffing を導入
Mozilla/5.0 (Windows NT 10.0; Win64; x64) FxQuantum/58.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.54 Safari/537.36- 通常は
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:95.0) Gecko/20100101 Firefox/95.0
- Fission のロールアウト
-
Firefox 95 for developers - Mozilla | MDN
- https://developer.mozilla.org/en-US/docs/Mozilla/Firefox/Releases/95
crypto.randomUUID()
- These Weeks in Firefox: Issue 103 – Firefox Nightly News
- These Weeks in Firefox: Issue 104 – Firefox Nightly News
- These Weeks in Firefox: Issue 105 – Firefox Nightly News
Intents
- Prototype and Ship: AnimationFrameProvider for DedicatedWorkerGlobalScope
-
Prototype and ship:
hwb()colors - Prototype: OffscreenCanvas
- Ship: Cookie "SameSite=Lax by default", "SameSite=None only if secure" and "Schemeful SameSite"
- Ship: CSS page-size
- Ship: Partitioned Third-party ServiceWorker in dFPI
- Ship: inputmode attribute on Firefox Desktop
- Ship: Web Locks
- Ship: CSS reversed() counters
- Unship: SVGPathSeg APIs
- Unship: Alt-a works as "Select All" on Linux
- Engineering Effectiveness Newsletter (November 2021 Edition)
- Firefox Security & Privacy Newsletter 2021 Q3
Other
- Engineering Effectiveness Newsletter (October 2021 Edition)
- There's more than one way to browse on mobile with Firefox and Firefox Focus
- Firefox brings you a new homepage making it easier to jump back in to the stuff you care about on your mobile devices
- Announcing Firefox 94 New Colorways Themes
-
Mozilla's Firefox named in inaugural Brands That Matter
- https://blog.mozilla.org/en/mozilla/mozillas-firefox-named-in-inaugural-brands-that-matter/
- https://www.fastcompany.com/brands-that-matter/2021
- Brands That Matter 2021 に Firefox がノミネートされた
- Tired of spam? A burner email account could be the answer.
- Announcing Slate & Pocket Partnership Slow Burn Season 6
- Hacked Story of Real Estate Scam & Online Security Tips
- Securing the proxy API for Firefox add-ons - Mozilla Security Blog
- Finding and Fixing DOM-based XSS with Static Analysis – Attack & Defense
- Introducing Firefox Relay Premium, allowing more aliases to protect your identity from spammers
- Firefox's Private Browsing mode upleveled for you
- WebAssembly and Back Again: Fine-Grained Sandboxing in Firefox 95 - Mozilla Hacks - the Web developer blog
Safari 動向
Stable: 15.1
Updates
-
New WebKit Features in Safari 15
- https://webkit.org/blog/11989/new-webkit-features-in-safari-15/
- Web Extensions
-
HTML
theme-color
-
CSS
aspect-ratio- Color Level 4
- new
list-style-type
- Web Inspector
-
JavaScript and WebAssembly
- support for top-level await
- Error.cause
- private class methods and accessors
- BigInt64Array and BigUint64Array
-
Web APIs
- WebGL2
- Web Share API
requestAnimationFrameperformance.timeOrigin
-
Media
- Opus in WebM
- VP9 and WebM in MSE
- MediaSession API to Share Play
-
Security and Privacy
- automatic HTTPS upgrade
- hide IP from known trackers
- updates to Private Click Measurement
-
Authentication and Passwords
autocomplete=one-time-codeapple-otpauth:- otpauth QR code
- Secure login with iCloud Keychain verification codes
-
Payments
- Payment Request API
-
Release Notes for Safari Technology Preview 134
- https://webkit.org/blog/12033/release-notes-for-safari-technology-preview-134/
-
CSS
- Unprefixed -webkit-appearance and added support for the auto value (r283858, r284098)
- Added support for the x resolution unit outside of image-set (r282396)
- Added support for text-decoration-skip-ink (r282397)
-
Fonts
- Added parsing support for font-palette-values (r282806)
- Added parsing support for font-palette (r282851)
- Added pushing font-palette-values data into CSSFontSelector (r282838)
- Added support for CSSFontPaletteValuesRule.name (r283140)
- Added Web Inspector support for font-palette (r282987)
- Allowed base-palette can accept "light" or "dark" (r283398)
-
Scrolling
- Enabled support for ScrollOptions' ScrollBehavior and CSS scroll-behavior properties (r284029)
-
Rendering
- Enabled 2D canvas color space support on Apple platforms (r283541)
- Updated converting an SVG image for canvas drawImage to choose an appropriate color space (r283531)
-
Dialog Element
-
The
<dialog>element is now enabled by default (r284155), also including:- support for the CSS ::backdrop pseudo element
- support for the top layer
<form method="dialog">support
- The inert attribute is available for testing behind an experimental flag with the same name
-
The
-
WebAssembly
- Allowed WASM to use up to 4GB (r284330)
- Implemented the WebAssembly exception handling proposal (r283852)
-
JavaScript
- Enabled unlinked Baseline JIT for performance (r283139)
-
Web API
- Enabled BroadcastChannel (r282426)
- Implemented top-origin and frame-origin partitioning for BroadcastChannel (r282366)
- Enabled Storage API by default (r284273)
- Enabled FileSystemAccess and AccessHandle by default (r284131)
- Implemented FileSystemSyncAccessHandle read() and write() (r284059)
- Implemented the borderBoxSize and contentBoxSize parts of ResizeObserver (r282441)
- Implemented CSP script-src-elem, style-src-elem, script-src-attr and style-src-attr directives (r284254)
-
WebRTC
- Added support for WebRTC media capabilities (r284085, r284236)
- Changed MediaCapabilities to enqueue a task to resolve promises (r284236)
-
Accessibility
- Exposed the URL attribute of
<video>elements (r283799) - Made PDFs loaded via
<embed>accessible (r282358)
- Exposed the URL attribute of
-
Private Click Measurement
- Allowed measurement of links in nested, cross-site iframes (r283593)
-
Web Extensions
- Allowed more directives to be included in the content_security_policy of an extension's manifest, such as the sandbox directive
-
Release Notes for Safari Technology Preview 135
- https://webkit.org/blog/12040/release-notes-for-safari-technology-preview-135/
-
CSS
- Media queries affect Cascade Layer order (r284859)
- Enabled accent-color by default (r284634)
- Added support for small svw/svh/svmin/svmax, large lvw/lvh/lvmin/lvmax, and dynamic dvw/dvh/dvmin/dvmax viewport units (r284628)
- Added flex-basis: content support (r284440)
- Added support for contain: style for counters (r284642, r284755)
- Added support for ::before and ::after pseudo elements after ::slotted (r284973)
- Added support for more CSS properties for ::marker (r284519)
- Allowed :is and :where after all pseudo elements (r285054)
- Made :-webkit-any() a synonym of :is() (r285032)
-
WebAPI
- Enabled lazy image loading by default (r284995)
- Added support for rel="noopener/noreferrer" on
<form>elements (r284749) - Exposed MediaCapabilities to Workers (r284443)
-
Media
- Added support for requestVideoFrameCallback API for MediaStreamTrack-based backends (r284528)
-
Release Notes for Safari Technology Preview 136
- https://webkit.org/blog/12137/release-notes-for-safari-technology-preview-136/
-
CSS
- Added support for contain: paint (r285583)
- Added support for the revert-layer value (r285624)
- Added flex-basis: content support (r285709)
- Implemented Scroll To Text Fragment directive parsing (r285528)
-
JavaScript
- Implemented IntlNumberFormat v3 (formatRangeToParts is not implemented yet) (r285418)
- Implemented Temporal.Instant (r285178)
-
Web API
- Implemented custom element definition's disable shadow flag (r285740)
-
Media
- Fixed showing languages and subtitles tracks button and menu for
<audio>(r285216)
- Fixed showing languages and subtitles tracks button and menu for
-
Web Animations
- Added support for composite operations for software animations (r285397)
-
WebAuthn
- Implemented add_virtual_authenticator and remove_virtual_authenticator for WebDriver (r285267)
-
Web Extensions
- Added support for manifest_version 3 and service_worker background scripts, while also supporting the option of using non-persistent background pages
- Added support for script and style injection via the browser.scripting APIs
- Added support for dynamic and session rules via the browser.declarativeNetRequest APIs
- PCM for In-App Direct Response Advertising
Position
- https://lists.webkit.org/pipermail/webkit-dev/
- いくつかあるが返事は無し
Other
- Enable :focus-visible pseudo-class by default
Edge 動向
Stable: 96
Updates
- Previewing Citations in Microsoft Edge
- Microsoft Edge celebrates customers moving to IE mode, Linux, and new search innovations
- Microsoft Edge features help give you the most out of Microsoft 365 to reduce the pain of context switching
- Debug memory leaks with the Microsoft Edge Detached Elements tool
- Cloud Site List Management experience for IE mode in Microsoft Edge now generally available
Chakra
Other
- <第一弾> Developer Support Internet (DSI) ってどのような製品の技術サポートをしているの? | Japan Developer Support Internet Team Blog
- <第二弾> インターンから見た Microsoft と Developer Support Internet (DSI) チーム (2021) | Japan Developer Support Internet Team Blog
- Introducing transparent ads in Microsoft Edge Preview - Microsoft Tech Community
- Introducing Buy now, pay later in Microsoft Edge - Microsoft Tech Community
- Microsoft Edge's Many Processes – text/plain
- Great Bug Reports via "Recreate My Problem" in Microsoft Edge – text/plain
- View-Source – text/plain
- Edge に「Chrome のダウンロードを中止するように必死で促す新機能」が追加、実際の画面はこんな感じ - GIGAZINE
WHATWG/W3C 動向
TPAC
-
TPAC 2021: Overview
- https://www.w3.org/2021/10/TPAC/Overview.html
- 10/12: AC meeting (member-only)
-
10/18 – 22: breakout sessions, social events
- https://web-eur.cvent.com/event/2b77fe3d-2536-467d-b71b-969b2e6419b5/websitePage:efc4b117-4ea4-4be5-97b4-c521ce3a06db
- State of CSS 2021
- WebViews - Making WebViews Work for the Web
- TPAC_2021_breakout_WebRTC - NV Use cases
- focusgroup_toggle_and_tabs.pdf
-
10/25 – 29: group & joint meetings
- https://web-eur.cvent.com/event/2b77fe3d-2536-467d-b71b-969b2e6419b5/websitePage:efc4b117-4ea4-4be5-97b4-c521ce3a06db
-
Second Screen WG/CG - TPAC 2021 agenda · Issue #3 · w3c/secondscreen-wg
- https://github.com/w3c/secondscreen-wg/issues/3
- Multi-Screen WIndow Placemnet
- Remote Playback
-
Agenda TPAC2021 · w3c/webpayments Wiki
- https://github.com/w3c/webpayments/wiki/Agenda-TPAC2021
- Secure Payment Confirmation
- SPC w/ WebAuthN
- w/ PING
- Digital Goods API
- WebPerf WG @ TPAC 2021 - Google ドキュメント
- TPAC 2021 · w3c/webappswg Wiki
- TPAC 2021 - Web Real-Time Communications Working Group Wiki
-
WebTransport/TPAC 2021 - W3C Wiki
- https://www.w3.org/wiki/WebTransport/TPAC_2021
- Multicast Group との discussion
- Networks/TPAC2021 - W3C Wiki
- TPAC 2021 initial planning - Cognitive Accessibility Task Force
- 10/18 – 29: expo space
- 10/18 – 29: networking
-
webappsec/2021-10-19-minutes.md at main · w3c/webappsec
- https://github.com/w3c/webappsec/blob/main/meetings/2021/2021-10-19-minutes.md
- TPAC とは別?
- CSP の話をしている
- webappsec/2021-11-16-agenda.md at main · w3c/webappsec
Draft
-
Recommendation
- ARIA in HTML is a W3C Recommendation
- Proposed Recommendation
-
Candidate Recommendation
- W3C Invites Implementations of CSS Scrollbars Styling Module Level 1
- W3C Invites Implementations of User Timing and Performance Timeline
- Working Draft
-
First Public Working Draft
- First Public Working Draft: MiniApp Packaging
- First Public Working Draft: Digital Publishing Accessibility API Mappings 1.1
-
Chartering
- Proposed W3C Charter: Web Payments Working Group
- Proposed W3C Charter: Accessible Rich Internet Applications Working Group
- HTML Working Group Charter extended until 31 January 2022
- Call for Prior Art - Second Screen Working Group PAG
Other
-
The WHATWG Blog - New Living Standards
- https://blog.whatwg.org/new-living-standards-2021
- WHATWG で管理する仕様に以下の 4 つが追加
- Web IDL Standard
- Test Utils Standard
- WebSockets Standard
- New standard: File System · Issue #176 · whatwg/sg
-
W3C opens Technical Architecture Group (TAG) election | W3C News
- https://www.w3.org/blog/news/archives/9338
- Statements about TAG nominees for 2021 Election
-
Interoperability Remedies Community Group
- https://interop-remedies-cg.github.io/
- Interoperability Remedies Community Group Charter
- https://interop-remedies-cg.github.io/charter.html
TC39 動向
Meeting
-
2021-11
- https://github.com/tc39/agendas
- https://github.com/tc39/notes/blob/master/meetings/2021-10/oct-25.md
- https://github.com/tc39/notes/blob/master/meetings/2021-10/oct-26.md
- https://github.com/tc39/notes/blob/master/meetings/2021-10/oct-27.md
- https://github.com/tc39/notes/blob/master/meetings/2021-10/oct-28.md
Proposals Diff
- https://github.com/tc39/proposals/compare/master@{2021-11-01}...master@{2021-12-11}
- https://tc39.github.io/beta/
-
0->1
- String.cooked
- Bind this operator
- Evaluator Attributes
- RegExp Modifiers
- RegExp Extended Mode and Comments
- RegExp \R Escape
- RegExp Buffer Boundaries
-
1->2
- Array Grouping
- Destructure Private Fields
- 2->3
-
3->4
- Error Cause
New Proposals
- tc39/proposal-function-helpers
-
tc39/proposal-destructuring-private
- https://github.com/tc39/proposal-destructuring-private
const {#foo: foo} = thisする
- FrankYFTang/proposal-intl-segmenter-v2
- tc39/proposal-regexp-modifiers: Regular Expression Pattern Modifiers for ECMAScript
- tc39/proposal-regexp-x-mode
-
tc39/proposal-regexp-r-escape: Regular Expression
\REscape for ECMAScript - tc39/proposal-regexp-buffer-boundaries
Other
IETF 動向
WG
- IETF112
-
httpwg
- https://lists.w3.org/Archives/Public/ietf-http-wg/
- https://github.com/httpwg/wg-materials/
- HTTP PREVIEW method
- HTTP Signatures Playground
- Digest Fields: removing id- algorithms
- I-D Action: draft-ietf-httpbis-binary-message-00.txt
- I-D Action: draft-ietf-httpbis-http2bis-06.txt
- I-D Action: draft-ietf-httpbis-priority-10.txt
- I-D Action: draft-ietf-httpbis-digest-headers-07.txt
- Publication has been requested for draft-ietf-httpbis-targeted-cache-control-02
- Publication has been requested for draft-ietf-httpbis-priority-09
- Working Group Last Call: Digest Fields
- Last Call: (Extensible Prioritization Scheme for HTTP) to Proposed Standard from The IESG
- Last Call: (Hypertext Transfer Protocol Version 2 (HTTP/2)) to Proposed Standard from The IESG
- extensible prioritization scheme review
-
Hold the Date: February 2022 Interim Meeting
- https://lists.w3.org/Archives/Public/ietf-http-wg/2021OctDec/0149.html
- February 1, 21:00-23:00 UTC
- February 3, 21:00-23:00 UTC
-
quicwg
- https://mailarchive.ietf.org/arch/browse/quic/
- https://github.com/quicwg/wg-materials
- Multipath Extension for QUIC @ IETF-112, Nov 10, 2021
- QUIC Version 2
- webtrans
- tlswg
-
wpack
-
WPACK@IETF112
- https://datatracker.ietf.org/meeting/112/materials/slides-112-wpack-wpack-chairs-slides-ietf112-00
- Bundle Preload と WebBundle をマージしようという話
- slides-112-wpack-bundle-preload-00
- Web Bundles and Bundle Preloading (2 つの仕様の差分)
-
WPACK@IETF112
-
httpapi
-
Query Method
- https://datatracker.ietf.org/meeting/112/materials/minutes-112-httpapi-00
- httpapi ができる前から httpwg でやってたのでそのままだけど、本来は httpapi なのでこっちで mnot が紹介的な?
-
Query Method
-
masque
-
HTTP Dgram Priorities IETF 112
- https://datatracker.ietf.org/meeting/112/materials/slides-112-masque-http-datagram-priorities-00
- QUIC で Datagram をする API の H3 版である Datagram における priority
-
HTTP Dgram Priorities IETF 112
- pearg
- privacypass
-
dispatch
-
DISPATCH Virtual Meeting @IETF-112 - HedgeDoc
- https://datatracker.ietf.org/meeting/112/materials/minutes-112-dispatch-00
- Secure Credential Transfer
- iCloud で WebAuthN の鍵共有みたいなケースの標準化
-
DISPATCH Virtual Meeting @IETF-112 - HedgeDoc
- secdispatch
-
ohai
-
OHTTP
- ietf112-ohai-chairs-slides
- WG ができて初めてのセッションなのでご紹介
- Oblivious HTTP
-
OHTTP
-
priv
- ユースケースなどの出し合い BoF
-
other
-
Private Access Tokens
- https://www.ietf.org/archive/id/draft-private-access-tokens-01.html
- Trust Token の簡単なやつ well-known で pub key 公開するやつ
- Avoiding Internet Centralization
-
Private Access Tokens
Other
CDN 動向
Cloudflare
-
Cloudflare blocks an almost 2 Tbps multi-vector DDoS attack
- https://blog.cloudflare.com/cloudflare-blocks-an-almost-2-tbps-multi-vector-ddos-attack/
- Mirai による 2Tbps の DDoS を検出し軽減した話
- DNS amplification と UDP floods の組み合わせ
- 15000 の IoT デバイスとパッチの当たってない GitLab から
- 最近はネットワーク層の DDoS がトレンドで 44% 増加している
- How Cloudflare security responded to log4j2 vulnerability
- Inside the log4j2 vulnerability (CVE-2021-44228)
- CVE-2021-44228 - Log4j RCE 0-day mitigation
Fastly
- 30 years of the website: meeting the demands of the future | Fastly
- Web サイトの 30 年 : 未来に向けた Web アプリケーションの構築 | Fastly
- Web サイトの 30 年 : より安全な Web の未来に向けて | Fastly
- ウェブサイトの 30 年:次の 30 年を構築するための 5 つのレッスン|速く
- Digging deeper into Log4Shell - 0Day RCE exploit found in Log4j | Fastly
Other
セキュリティ動向
-
Exploiting CSP in Webkit to Break Authentication & Authorization
- https://threatnix.io/blog/exploiting-csp-in-webkit-to-break-authentication-authorization/
- Webkit の CSP バグを使って認証を盗む
- DEMO の動画あり
周辺動向
-
Sorry Safari team - Modern Web Development with Chrome by Paul Kinlan
- https://paul.kinlan.me/sorry-safari-team/
- Chrome Dev Summit で Compat 2021 の成果報告があった
-
3 ブラウザそれぞれでスコアが向上していたが、 Safari だけ点数が低かった
- 実は数ヶ月前の Safari TP でテストしていたことが判明
- スコアの元になった web-platform-tests はインフラの都合上、新しい Safari TP を入れられていなかった
- public shaming として扱われて燃えてしまい、 Paul Kinlan が謝罪
-
Top web developer pain points in 2021 - Modern Web Development with Chrome by Paul Kinlan
- https://paul.kinlan.me/top-web-developer-pain-points-in-2021/
- 米国、イギリスとインドの開発者に、 Web 開発の難しいところについて 3 ヶ月ごとにアンケートをとった
-
上位 5 つの変化はそこまでなかった
- Keeping up with changes to the web platform/web standards
- Keeping up with a large number of new and existing tools or frameworks
- Making a design/experience work the same across browsers
- Testing across browsers
- Understanding and implementing security measures
- 2021 Web Almanac
-
Open Props: sub-atomic styles
- https://open-props.style/
- Adam Argyle によるユーティリティカスタムプロパティ集
イベント
- 12 月
- 1 月
-
2 月
- 1-3: HTTPBis Interim
Wrap Up
-
chrome
-
96
- emulate version 100
- bfcache default on desktop
-
97
- WebTransport
scriptElement.support()Array.findLast(),Array.findLastIndex()
-
Prototype
- capability delegation
- input element
showPicker() - blocking=rendering 属性
NFC.makeReadonly()- Set-Cookie の
Domain=""を許容
-
Ship
- Request Origin / Redirect Chain
- Private Network Access for Preflight
- Cascade Layer
- Sec-CH-UA-Full-Version-List
-
CDS
- animation smoothness metrics
- resposiveness metrics
-
web.dev
- UI fund
-
Search Central
- Page Experience ranking to desktop rollout in Feb 2022
-
Other
- Bento.js (Bento AMP)
- BlinkOn 15
-
96
-
Firefox
-
94
self.structuredClone()scriptElement.supoorts()
-
95
- site isolation rollout
crypto.randomUUID()- UA sniffing for slack.com
-
Ship
- SameSite=Lax by default
-
94
-
Safari
-
15.0
<meta name="theme-color">aspect-ratio- top-level await
- Error.cause
- Private Class methods/accessors
- WebGL2
autocomplete="one-time-code"
-
TP 134
text-decoration-skip-ink- enable
<dialog>by default inertattribute behind flag- enable BroadCastChannel by default
- enable Storage API + FileSystemAccess + AccessHandle by default
- CSP script-src-elem, script-src-attr, etc.
-
TP 135
- enable
accent-colorby default - CSS small/large/dynamic viewport units
- enable image lazy-loading by default
- enable
-
TP 136
contain: paint- Scroll To Text Fragment parsing
- manifest_version 3
-
Other
- enable
:focus-visibleby default
- enable
-
15.0
-
Edge
- Developer Support Internet team internship
- Recreate My Problem ボタンでバグレポート
-
WHATWG/W3C
-
TPAC2021
- Sate Of CSS 2021
- Making WebViews Work for the Web
- Cognitive Accessibility Task Force (COGA)
- XS-Leaks summit
- Aria Recommendation
-
WHATWG New Living Standards
- WebIDL
- Test Utils
- WebSocket
- File System
- TAG Election
- Interoperability Remedies Community Group
-
TPAC2021
-
TC39
- Error Cause stage 4
- tc39/proposal-function-helpers
- tc39/proposal-destructuring-private
- tc39/proposal-regexp-modifiers
-
IETF
- Publication request: draft-ietf-httpbis-targeted-cache-control-02
- Publication request: draft-ietf-httpbis-priority-09
- Working Group Last Call: Digest Fields
- Bundle Preload と WebBundle のマージ
- Secure Credential Transfer (iCloud のような鍵共有)
- Avoiding Internet Centralization
-
CDN
-
Cloudflare
- Mirai による 2Tbps の DDoS
-
Fastly
- log4j の脆弱性
-
Cloudflare
-
周辺
- CDS の Compat2021 で Safari TP が古かったことを Paul Kinlan が謝罪
- Web Almanac 2021
- Open Props (css variables での css framework)