Re: [whatwg] Sandboxing to accommodate user generated content.

<31fb000f0806171133le949b04v8c7f55a7cc4623c6@mail.gmail.com>

Current votes: None.
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