ECMAScript - Security Task Group (TC39-TG3)

This repository contains documents, agendas, and notes for the ECMAScript - Security Task Group (TC39-TG3).

See Scope for our mandate.

Meetings

Meetings occur every Wednesday and appear on the TC39 private calendar.

• Join meeting
• Agenda

Every Wednesday

US / Central	12:00 Wednesday
UTC	18:00 Wednesday
China	02:00 Thursday

Chat

We use Matrix room #tc39-tg3-security:matrix.org. See the TC39 Matrix Guide for details if you are unfamiliar with Matrix.

Folks

• Convenors
  • Chris de Almeida
  • Jordan Harband
  • Kris Kowal
• Speaker
  • Michael Ficarra
• Members
  • Caridy Patiño
  • Chip Morningstar
  • Chris de Almeida
  • Daniel Ehrenberg
  • Daniel Veditz
  • Eli Grey
  • Guy Bedford
  • Jesse Alama
  • Jordan Harband
  • Jovonni Smith-Martinez
  • Kris Kowal
  • Luca Casonato
  • Marco Ippolito
  • Mark Miller
  • Mathieu Hofman
  • Michael Ficarra
  • Nicolò Ribaudo
  • Peter Hoddie
  • Richard Gibson
  • Shane Carr
  • Shay Lewis
  • Ulises Gascón
  • Waldemar Horwat

Scope

To ensure the ECMAScript® (JavaScript™️) security model is effective for the constantly evolving threat landscape of today and tomorrow.

Programme of work

1. To assess the security impacts of proposals to TC39.
2. To produce documentation on the ECMAScript® security model.
3. To introduce proposals that will help developers create secure programs.
4. To recommend a committee response to privately disclosed security issues.
5. To maintain best practices or recommendations for writing secure programs.
6. To monitor the changing threat landscape for popular embeddings.