| 16:25 | <MikeSmith> | annevk: deviceorientation too, it seems |
| 16:25 | <MikeSmith> | at least it is as implemented |
| 16:26 | <MikeSmith> | haven’t checked to see what the spec says |
| 16:27 | <MikeSmith> | https://w3c.github.io/deviceorientation/#security-and-privacy |
| 16:27 | <MikeSmith> | > to minimize privacy risks, the chance of fingerprinting and other attacks the implementations must: |
| 16:27 | <MikeSmith> | … |
| 16:27 | <MikeSmith> | > |
| 16:27 | <MikeSmith> | fire events only on the top-level browsing context and same-origin nested browsing contexts, |
| 19:59 | <annevk> | Well that is not an accurate check, but it does seem they were going for it, yeah |