Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Consider DOM autocomplete attribute values for form selection and field fill prioritisation #337

Open
luckyrat opened this issue Jun 6, 2024 · 0 comments
Open

Consider DOM autocomplete attribute values for form selection and field fill prioritisation #337

luckyrat opened this issue Jun 6, 2024 · 0 comments
Labels
enhancement help wanted

Comments

@luckyrat
Copy link
Member

luckyrat commented Jun 6, 2024

So far we only use this attribute to ignore new password fields since this is what was reliably implemented on the web previously.

It is likely that enough websites now use this attribute correctly, rather than maliciously, and we therefore want to try using this DOM information in our heuristics.

We can treat any text field as a high match for the following, in order of priority (match score):

username
email
name

password fields can match "current-password"

If a field has one of these values, we can also consider that it is a valid form to be considered, even if it otherwise would be ignored (for example, this would help where a sign-in form doesn't show a password field initially). In this situation, we will consider only "username" and "email" to reduce the number of false positives of other more general purpose data gathering forms.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement help wanted
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@luckyrat