From 278357213d30adbda941b9347bca71624cc8d264 Mon Sep 17 00:00:00 2001 From: Daniel Date: Mon, 14 Oct 2024 18:49:18 +0200 Subject: [PATCH 1/4] Add privacy and security considerations --- act-rules-format/act-rules-format.bs | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/act-rules-format/act-rules-format.bs b/act-rules-format/act-rules-format.bs index 1ad157f..aba3754 100644 --- a/act-rules-format/act-rules-format.bs +++ b/act-rules-format/act-rules-format.bs @@ -753,6 +753,15 @@ Harmonization occurs when a group of rule implementors collectively accept the v An example of such a process is the [WCAG ACT Review Process](https://w3c.github.io/wcag-act/wcag-ruleset-review-process). +Privacy Considerations {#privacy-considerations} +========================== + +This specification is not intended to expose information directly to user agents or assistive technologies. There is no other privacy implications that this Group is aware of. + +Security considerations {#security-considerations} +========================== + +This specification does not allow the communication between origins and the underlying platform, neither does it allow access to device sensors. The specification does not enable new script execution/loading mechanisms. There are no other security considerations this Group is aware of. Definitions {#definitions} ========================== From 977ab778a86999168f03f226d78eebc7ec050dbe Mon Sep 17 00:00:00 2001 From: Daniel Montalvo <49305434+daniel-montalvo@users.noreply.github.com> Date: Wed, 13 Nov 2024 12:04:15 +0100 Subject: [PATCH 2/4] Grammar fixes Co-authored-by: Kathy Eng --- act-rules-format/act-rules-format.bs | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/act-rules-format/act-rules-format.bs b/act-rules-format/act-rules-format.bs index aba3754..700141d 100644 --- a/act-rules-format/act-rules-format.bs +++ b/act-rules-format/act-rules-format.bs @@ -756,12 +756,12 @@ An example of such a process is the [WCAG ACT Review Process](https://w3c.github Privacy Considerations {#privacy-considerations} ========================== -This specification is not intended to expose information directly to user agents or assistive technologies. There is no other privacy implications that this Group is aware of. +This specification is not intended to expose information directly to user agents or assistive technologies. This Group is not aware of other privacy implications. Security considerations {#security-considerations} ========================== -This specification does not allow the communication between origins and the underlying platform, neither does it allow access to device sensors. The specification does not enable new script execution/loading mechanisms. There are no other security considerations this Group is aware of. +This specification does not allow the communication between origins and the underlying platform, neither does it allow access to device sensors. The specification does not enable new script execution/loading mechanisms. This Group is not aware of other security considerations. Definitions {#definitions} ========================== From 4dd4552ed21c9d9d77881be6d7236ddccc20748a Mon Sep 17 00:00:00 2001 From: Daniel Date: Wed, 13 Nov 2024 12:18:05 +0100 Subject: [PATCH 3/4] Clarify "origins" and "underlying platforms" --- act-rules-format/act-rules-format.bs | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/act-rules-format/act-rules-format.bs b/act-rules-format/act-rules-format.bs index 700141d..0755689 100644 --- a/act-rules-format/act-rules-format.bs +++ b/act-rules-format/act-rules-format.bs @@ -761,7 +761,7 @@ This specification is not intended to expose information directly to user agents Security considerations {#security-considerations} ========================== -This specification does not allow the communication between origins and the underlying platform, neither does it allow access to device sensors. The specification does not enable new script execution/loading mechanisms. This Group is not aware of other security considerations. +This specification does not provide means for protocols, domains, and ports to communicate directly with underlying platforms (including browsers and operating systems), neither does it allow access to device sensors. The specification does not enable new script execution/loading mechanisms. This Group is not aware of other security considerations. Definitions {#definitions} ========================== From fe3e7849f1f3b2783c5b25a47a6fdafd9e5c0cfc Mon Sep 17 00:00:00 2001 From: Daniel Date: Thu, 14 Nov 2024 13:46:58 +0100 Subject: [PATCH 4/4] Update changelog --- act-rules-format/act-rules-format.bs | 2 ++ 1 file changed, 2 insertions(+) diff --git a/act-rules-format/act-rules-format.bs b/act-rules-format/act-rules-format.bs index ed8f0d9..70c90cb 100644 --- a/act-rules-format/act-rules-format.bs +++ b/act-rules-format/act-rules-format.bs @@ -1062,6 +1062,8 @@ Appendix 3: Change History {#Change_History} This section is *non-normative*.
    +
  • 7. Privacy Considerations Added
    • +
  • 8. Security Considerations Added
  • 4. Rule Structure Accessibility Support and Assumptions section are now subsections of Background.
  • 4.4. Accessibility Requirements Mapping Accessibility requirements are now categorized as either Conformance requirements or Secondary requirements.
  • 4.6 Applicability Subjective applicability statements are now allowed. Objective and plain language requirements have been reduced to should instead of must.