| CARVIEW |
Select Language
HTTP/2 200
date: Thu, 25 Dec 2025 13:22:53 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"aec42c78ebd6a06544db834d801b3342"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com github.githubassets.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com wss://alive-staging.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com marketplace-screenshots.githubusercontent.com/ copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com github.githubassets.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=AmSfM3ySrTR9uMWoW4JxEL1D0M%2BSK8%2BkU%2FdKvBsp5YThXViuVKY0tI8L1%2F8yUC9gTSehXCGJIr33cVZmLuQkSYLJs1AYRAsQ9AY2wyeV45hs5MyKDloLzy2vhGstCt5atAM6ZKesmmQdLoCzks4YLaJEhh6Q0FCYJBjQqmLIyZ7YHiA8unLiI%2BpbSs8CZq1NtfWmVBSItouE5Jj9RnT9ZTkMlBxMGAfztBlnREeGA%2F3xuVMDpRKjnL15HltQWCosTxr9uO%2BFVLdLEtGhgEWJnA%3D%3D--GIp8sSIP5M7B5VTE--Kmr1%2BE65WT4zMP4n8MLxzA%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
set-cookie: _octo=GH1.1.750068873.1766668972; Path=/; Domain=github.com; Expires=Fri, 25 Dec 2026 13:22:52 GMT; Secure; SameSite=Lax
set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Fri, 25 Dec 2026 13:22:52 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: EDDC:1533AA:2B906CC:33E4EF9:694D3AAC
GitHub · Where software is built
Search
Skip to content
Navigation Menu
{{ message }}
-
Notifications
You must be signed in to change notification settings - Fork 381
Issues
is:issue state:open
is:issue state:open
Search results
- Status: Open.#1899 In whatwg/fetch;
Request with credentials included, but only if they are partitioned
addition/proposalNew features or enhancementsNew features or enhancementsneeds implementer interestMoving the issue forward requires implementers to express interestMoving the issue forward requires implementers to express interestStatus: Open.#1892 In whatwg/fetch;Add <code>Prefer: safe</code> HTTP header
addition/proposalNew features or enhancementsNew features or enhancementscompatStandard is not web compatible or proprietary feature needs standardizingStandard is not web compatible or proprietary feature needs standardizingneeds implementer interestMoving the issue forward requires implementers to express interestMoving the issue forward requires implementers to express interestStatus: Open.#1891 In whatwg/fetch;URLs of intermediary redirects are leakable in practice (same-origin)
security-trackerGroup bringing to attention of security, or tracked by the security Group but not needing response.Group bringing to attention of security, or tracked by the security Group but not needing response.security/privacyThere are security or privacy implicationsThere are security or privacy implicationsStatus: Open.#1890 In whatwg/fetch;Fill in CONNECT pseudo-headers automatically (e.g. from request mode)
integrationBetter coordination across standards neededBetter coordination across standards neededtopic: websocketsWebSockets integrationWebSockets integrationStatus: Open.#1881 In whatwg/fetch;Support serverCertificateHashes in obtain a connection for WebTransport
topic: webtransportWebTransport integrationWebTransport integrationStatus: Open.#1880 In whatwg/fetch;Allow user agents to use more permissive header validation in extensions
addition/proposalNew features or enhancementsNew features or enhancementsintegrationBetter coordination across standards neededBetter coordination across standards neededneeds concrete proposalMoving the issue forward requires someone to figure out a detailed planMoving the issue forward requires someone to figure out a detailed planStatus: Open.#1878 In whatwg/fetch;- Status: Open.#1875 In whatwg/fetch;
<code>Response.redirect</code> should return object whose headers are mutable, as well as <code>Response.json</code>
addition/proposalNew features or enhancementsNew features or enhancementsneeds concrete proposalMoving the issue forward requires someone to figure out a detailed planMoving the issue forward requires someone to figure out a detailed planStatus: Open.#1868 In whatwg/fetch;static method: <code>Response.html</code>?
addition/proposalNew features or enhancementsNew features or enhancementsneeds implementer interestMoving the issue forward requires implementers to express interestMoving the issue forward requires implementers to express interestStatus: Open.#1865 In whatwg/fetch;Convenience method to stream a response as text
addition/proposalNew features or enhancementsNew features or enhancementsneeds implementer interestMoving the issue forward requires implementers to express interestMoving the issue forward requires implementers to express interestStatus: Open.#1861 In whatwg/fetch;- Status: Open.#1850 In whatwg/fetch;
You can’t perform that action at this time.