Google Chrome 83 stable version released, form appearance & operability greatly updated with cooperation of Microsoft



The latest stable version of the web browser ' Google Chrome ', version 83.0.4103.61, has been released. Updates have been made, including a mechanism that helps prevent

cross-site scripting attacks (XSS) , improved form appearance and usability, and an API that recognizes barcodes. I will.

New in Chrome 83 | Web | Google Developers
https://developers.google.com/web/updates/2020/05/nic83

New in Chrome 83: Trusted types, updated form controls, and more!-YouTube


◆ 'Trusted Types', a mechanism for preventing XSS, appears
XSS is a site that receives user input and displays it on a page, where malicious code is executed on the page due to improper processing of the input. Depending on where the HTML is generated, it can be classified into server-side XSS and client-side XSS, but Trusted Types can find the place that can cause the latter.

By turning on Trusted Types, it is possible to get an error when trying to assign a character to an element that can cause XSS, such as innerHTML.



Instead, you can keep your website safe by using a function that doesn't cause XSS, like textContent, convert it to a trusted object before assigning it to a dangerous function, or combine createElement and appendChild. I can do it.



A feature is also implemented that only reports instead of stopping the site with an error. Detailed specifications and implementation methods can be confirmed

on the web.dev site .

◆ Form appearance is consistent regardless of device, and operability is also improved.
The left side of the image below is the previous look and the right side is the new look.



In addition to the appearance, updates have also been made to make it easier to perform touch operations and keyboard operations. For example, the appearance of the focus ring, which shows the focused element, has been changed to allow greater visibility in any background color.


The specific changes that have been made are summarized on the

chromium blog . In addition, these forms are updated in cooperation with Microsoft's Edge team, and it is said that the new forms are already reflected in Edge.

◆ 'Memory measurement API' and 'File system API' appear for testing new functions
Origin Trials , a system that allows developers to experiment with features planned for Chrome, has a memory measurement API and a file system API. By measuring the memory, you can prevent memory leaks, and by using the file system API, you can easily operate the files on the PC from the web application.

◆ Implements barcode identification API that can recognize QR codes and barcodes
Until now, it was necessary to load and process an external JavaScript library to recognize various barcodes, but from Chrome 83, an API for reading images and camera images and recognizing various barcodes. Is implemented in the browser. In addition to barcodes, it is also developing detection of faces and characters .



◆ Selector can be used with CSS @supports syntax
@supports is a syntax that allows conditional branching of CSS depending on whether the browser supports specific CSS elements. From Chrome 83, you can check whether it supports a specific selector such as ':: before'.

◆ Updated ARIA to improve convenience for blind people
A new annotation element has been added to ARIA , making it easier to perform work such as collaborative editing.

Chrome 83 also contains 38 security bug fixes .

Related Posts:

in Software, Posted by log1d_ts