On Wed, Oct 9, 2013 at 7:01 PM, Gervase Markham <g...@mozilla.org> wrote: > * XSLT (Chrome have already announced they will remove it:
They said they'd remove H.264, too. I'm not a fan of XSLT, but we shouldn't be the first one to remove it. I once had to fix a bug, because XSLT was being used in Chrome Experiments demos and we were failing at their shiny XSLT-dependent demos... Implementing XSLT 1.0 in JS and changing the architecture to be theoretically less pure than our current one but the same architecture that other browsers have (having the XSLT engine serialize the tree and then feed the serialization to the HTML parser) might be a way to reduce attack surface, though. (Beware of accidentally upgrading to XSLT 2.x when looking for existing JS implementation, though!) -- Henri Sivonen hsivo...@hsivonen.fi http://hsivonen.iki.fi/ _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform
