Dan: missing some context here

Hadley: "reading systems mush prevent data URLs opening as if they are top level content documents..."

Hadley: why don't we invite someone from the wg to come and chat.

Hadley: [posts comment](https://github.com/w3ctag/design-reviews/issues/635#issuecomment-847666940

Amy: they have a para in their spec and they want out opinion ... They say "top level browsing context" and they may be refering to an SVG which isn't techically a top level browsing context so they want feedback. They have decided on behaviour, just want feedback on how to communicate it.

Yves: what is the origin when you navigate to a data URL? And do you use whether the document was sent using https to infer whether it can access powerful features, etc?

Dan: trying to figure out if the WHATWG PR is consistent with what Ivan is asking about

Hadley: MDN page says this already happens.

Amy: it is consistent with what the epub spec is asking for...

Yves: their spec says must prevent data url from opening in a top level browsing context. They say "browsing context" doesn't apply to SVG - only HTML. Something something Transcluded references - resources that are automatically downloaded like images and style?

Dan: could we just advise them to say "top level context"? Should they specify it in their doc?

Amy: or they could just say "in this context SVG also counts" [when referring].

Dan: I think that would be sufficient. But I'm not implementing epub readers...

Yves: should be secure contexts as well... there was an issue about if data URL is a secure context and the resolution was no ... do they require secure contexts or not? If they do then instead of using top level context you can say only for secure context documents - in that case it prevents Data URLs to be used.

Dan: let's leave those comments and maybe we can close it at the plenary if we get a response.

[closed on the basis of the PR]