Page MenuHomePhabricator violates Labs ToS by loading Vega from
Closed, ResolvedPublic


Similar to T210946: violates Labs ToS:

Going to and looking at the HTML source, you can see the following lines:

<script charset='utf-8' src='//'></script>
<script charset='utf-8' src='//'></script>

See point #6.

Event Timeline

Aklapper created this task.Dec 28 2019, 3:23 PM
Restricted Application added a subscriber: Base. · View Herald TranscriptDec 28 2019, 3:23 PM
Ragesoss claimed this task.Dec 31 2019, 8:12 PM
sbassett triaged this task as High priority.Jan 2 2020, 5:11 PM
sbassett added a project: Security-Team.
sbassett moved this task from Incoming to Watching on the Security-Team board.
Ragesoss closed this task as Resolved.Jan 2 2020, 8:15 PM

Fixed via

I've deployed this change, so it's no longer loading the Vega libraries from the CDN.

chasemp added a subscriber: chasemp.Jan 2 2020, 8:20 PM

Thanks @Ragesoss hope you are having a good new year so far :)