From 5726e11a9dcb0bbe0eff6810781ae7939b51bca9 Mon Sep 17 00:00:00 2001
From: Mirko Brodesser <mbrodesser@igalia.com>
Date: Wed, 17 Jan 2024 14:25:17 +0100
Subject: [PATCH] Add goal for transitioning websites to save states

As mentioned at
<https://github.com/mozilla/standards-positions/issues/20#issuecomment-1783279722>.
---
 spec/index.bs | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/spec/index.bs b/spec/index.bs
index e859b3e..ffe3565 100644
--- a/spec/index.bs
+++ b/spec/index.bs
@@ -95,6 +95,11 @@ monitor and review.
 *   Encourage a design in which security decisions are
     encapsulated within a small part of the application.
 
+*   Enable transitioning existing websites to call alternative save methods to
+    [[#dom-xss-injection-sinks]]. Potentially with support of the <a
+    http-header>Content-Security-Policy-Report-Only</a> HTTP response header
+    field.
+
 *   Reduce security review surface for complex web application
     codebases.