http-extensions
HTTP Extensions in progress (by httpwg)
secure-bookmark
Security critical web apps with Data URL and subressource integrity (by coins)
http-extensions | secure-bookmark | |
---|---|---|
3 | 1 | |
403 | 8 | |
0.5% | - | |
9.5 | 10.0 | |
2 days ago | over 1 year ago | |
Python | JavaScript | |
- | - |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
http-extensions
Posts with mentions or reviews of http-extensions.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-11-21.
-
HTTP Message Signatures
I'll take this opportunity to point out that Ed25519 support is an open issue, but no one has stepped up to specify it yet.[0]
[0] https://github.com/httpwg/http-extensions/issues/1509
-
Signing HTTP Messages (Internet Draft)
(If anyone else's first instinct was to question RSA and ECDSA in a spec but no Ed25519, see https://github.com/httpwg/http-extensions/issues/1509)
-
Defining a new HTTP method: HTTP SEARCH
SEARCH isn't necessarily the permanent name though, it's just a starting point. There's a difficult compatibility vs good naming debate that's not yet decided. Go join the IETF mailing list/post on GH and add your vote :-)
secure-bookmark
Posts with mentions or reviews of secure-bookmark.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-11-21.
-
HTTP Message Signatures
Well, there is the SecureBookmarks trick[0], which uses integrity hashes and Data URLs, so you're right that signatures aren't strictly needed (especially at the HTTP level). I think the difficult part is the UX, and how to handle the failure modes, which is why browsers might reasonably be reluctant to support something like this.
[0] https://github.com/coins/secure-bookmark
What are some alternatives?
When comparing http-extensions and secure-bookmark you can also consider the following projects:
cert-verifier-js - Javascript library for verifying Blockcerts Certificates
warehouse - The Python Package Index
http-core - Core HTTP Specifications
wg-materials - Agenda, Minutes, Presentations
ietf-reviewtool - Download and review IETF documents, such as Internet-Drafts or RFCs.
base-drafts - Internet-Drafts that make up the base QUIC specification