← Back to release summary
Disallow opener navigation downloads from cross origin popups
- Category
- Network / Connectivity
- Type
- New or changed feature
- Status
- Enabled by default (Chrome 74)
- Intent stage
- None
Summary
If a popup navigates its opener to a URL which results in a download, the download will be blocked and the navigation cancelled, if the popup is cross-origin to its opener. This resolves a long standing security issue.
Standards & signals
View on chromestatus.com