Y
Hacker News
new
|
ask
|
show
|
jobs
by
photonbeam
969 days ago
> Removing support for dead formats is generally a very good idea, particularly in a web browser, because it reduces the attack surface;
This seems unfortunate, surely they could sufficiently sandbox the decoder
1 comments
ReactiveJelly
969 days ago
They do, but it's defense in depth
link
account42
969 days ago
Yet websites can run arbitrary JS?
link