✨ recent meetings

README.md

@@ -4,10 +4,6 @@ This repository contains documents, agendas, and notes for the [ECMAScript - Sec
 
 See [Scope](#scope) for our mandate.
 
-## Agenda
-
-see [2024-05-29](meetings/2024/2024-05-29.md) and [the backlog](meetings/backlog.md) 👀
-
 ## Meetings
 
 Meetings occur every Wednesday and appear on the [TC39 private calendar](https://github.com/tc39/Reflector#tc39-private-calendar).
@@ -45,7 +41,7 @@ We use Matrix room [#tc39-tg3-security:matrix.org](https://matrix.to/#/#tc39-tg3
 - Convenors
   - [Chris de Almeida](https://github.com/ctcpip)
   - [Jordan Harband](https://github.com/ljharb)
-  - [Kris Kowal](https://github.com/kriskowal) (to be confirmed at [the next plenary meeting](https://github.com/tc39/agendas/blob/main/2024/04.md))
+  - [Kris Kowal](https://github.com/kriskowal)
 - Speaker
   - [Michael Ficarra](https://github.com/michaelficarra)
 - Members
@@ -60,9 +56,6 @@ We use Matrix room [#tc39-tg3-security:matrix.org](https://matrix.to/#/#tc39-tg3
   - [Michael Ficarra](https://github.com/michaelficarra)
   - [Peter Hoddie](https://github.com/phoddie)
   - [Richard Gibson](https://github.com/gibson042)
-- Secretaries
-  - [Samina Husain](https://github.com/SaminaHusain)
-  - [Istvan Sebestyen](https://github.com/ecmageneva)
 
 ## Scope
 

meetings/2024/2024-05-29.md

@@ -1,45 +1,19 @@
 # 25th Meeting of TC39-TG3 - 2024-05-29
 
-|              |                 |
-| -----------: | --------------- |
-| US / Central | 12:00 Wednesday |
-|          UTC | 17:00 Wednesday |
-|        China | 01:00 Thursday  |
-
-Meeting link: [join meeting](https://ibm.webex.com/ibm/j.php?MTID=me87a7dba2f405268a892bc69ad1c3cdd)
-
 ## Folks
 
-> [!NOTE]
-> Add a ✓ to the `Present` column in the table below, and add anyone missing. Also add to [the template](../template.md) and [GitHub team](https://github.com/orgs/tc39/teams/tg3) if the individual is a regular attendee.
-
 | Present | Name             | GH Username     | TLA | Affiliation |
 | :-----: | ---------------- | --------------- | --- | ----------- |
-|         | Chip Morningstar | @FUDCo          | CM  | Agoric      |
-|         | Chris de Almeida | @ctcpip         | CDA | IBM         |
-|         | Daniel Veditz    | @dveditz        | DPV | Mozilla     |
-|         | Eli Grey         | @eligrey        |     | Transcend   |
-|         | Jack Works       | @Jack-Works     | JWK | Sujitech    |
-|         | Jasvir Nagra     | @jasvir         |     | Picovisor   |
-|         | Jordan Harband   | @ljharb         | JHD | HeroDevs    |
-|         | Kris Kowal       | @kriskowal      | KKL | Agoric      |
-|         | Mark Miller      | @erights        | MM  | Agoric      |
-|         | Mathieu Hofman   | @mhofman        | MHN | Agoric      |
-|         | Michael Ficarra  | @michaelficarra | MF  | F5          |
-|         | Nicolò Ribaudo   | @nicolo-ribaudo | NRO | Igalia      |
-|         | Peter Hoddie     | @phoddie        | PHE | Moddable    |
-|         | Richard Gibson   | @gibson042      | RGN | Agoric      |
-|         | Ulises Gascón    | @UlisesGascon   |     | One Beyond  |
-|         |                  |                 |     |             |
+|    ✓    | Chip Morningstar | @FUDCo          | CM  | Consensys   |
+|    ✓    | Chris de Almeida | @ctcpip         | CDA | IBM         |
+|    ✓    | Daniel Ehrenberg | @littledan      | DE  | Bloomberg   |
+|    ✓    | Eli Grey         | @eligrey        |     | Transcend   |
+|    ✓    | Kris Kowal       | @kriskowal      | KKL | Agoric      |
+|    ✓    | Mark Miller      | @erights        | MM  | Agoric      |
+|    ✓    | Mathieu Hofman   | @mhofman        | MHN | Agoric      |
+|    ✓    | Richard Gibson   | @gibson042      | RGN | Agoric      |
+|    ✓    | Saleh A. Motaal  | @SMotaal        |     | Consensys   |
 
 ## Agenda
 
-> [!NOTE]
-> See [backlog.md](../backlog.md) for outstanding action items and agenda topics.
-
-| Topic                                      | Presenter(s) |
-| ------------------------------------------ | ------------ |
-| review of previous agenda and action items |              |
-|                                            |              |
-
-### review of previous agenda and action items
+<https://github.com/w3c/trusted-types/issues/519>

meetings/2024/2024-06-05.md

@@ -0,0 +1,22 @@
+# 26th Meeting of TC39-TG3 - 2024-06-05
+
+## Folks
+
+> [!NOTE]
+> Add a ✓ to the `Present` column in the table below, and add anyone missing. Also add to [the template](../template.md) and [GitHub team](https://github.com/orgs/tc39/teams/tg3) if the individual is a regular attendee.
+
+| Present | Name             | GH Username     | TLA | Affiliation |
+| :-----: | ---------------- | --------------- | --- | ----------- |
+|    ✓    | Chip Morningstar | @FUDCo          | CM  | Agoric      |
+|    ✓    | Chris de Almeida | @ctcpip         | CDA | IBM         |
+|    ✓    | Eli Grey         | @eligrey        |     | Transcend   |
+|    ✓    | Jordan Harband   | @ljharb         | JHD | HeroDevs    |
+|    ✓    | Kris Kowal       | @kriskowal      | KKL | Agoric      |
+|    ✓    | Mark Miller      | @erights        | MM  | Agoric      |
+|    ✓    | Mathieu Hofman   | @mhofman        | MHN | Agoric      |
+|    ✓    | Richard Gibson   | @gibson042      | RGN | Agoric      |
+|    ✓    | Ulises Gascón    | @UlisesGascon   |     | One Beyond  |
+
+## Agenda
+
+discussion of upcoming plenary agenda topics

meetings/2024/2024-06-26.md

@@ -0,0 +1,34 @@
+# 27th Meeting of TC39-TG3 - 2024-06-26
+
+## Folks
+
+> [!NOTE]
+> Add a ✓ to the `Present` column in the table below, and add anyone missing. Also add to [the template](../template.md) and [GitHub team](https://github.com/orgs/tc39/teams/tg3) if the individual is a regular attendee.
+
+| Present | Name             | GH Username     | TLA | Affiliation |
+| :-----: | ---------------- | --------------- | --- | ----------- |
+|    ✓    | Chip Morningstar | @FUDCo          | CM  | Consensys   |
+|    ✓    | Chris de Almeida | @ctcpip         | CDA | IBM         |
+|    ✓    | Jordan Harband   | @ljharb         | JHD | HeroDevs    |
+|    ✓    | Jovonni          |                 |     |             |
+|    ✓    | Kris Kowal       | @kriskowal      | KKL | Agoric      |
+|    ✓    | Marco Ippolito   | @marco-ippolito | MIO | HeroDevs    |
+|    ✓    | Richard Gibson   | @gibson042      | RGN | Agoric      |
+|    ✓    | Ulises Gascón    | @UlisesGascon   | UG  | One Beyond  |
+
+## Agenda
+
+> [!NOTE]
+> See [backlog.md](../backlog.md) for outstanding action items and agenda topics.
+
+### structs discussion, post-plenary debrief
+
+from delegates chat during/after plenary:
+
+(from that chat) RBN: Do we, as a committee, think JS privacy is a security feature? Would it be unforgivable if private state isn't really private at the realm boundary? If we could have struct S { #x; ... } in realm A mapped to struct S { x; ... } in realm B, would we consider that a security vulnerability?
+
+(from that chat) CDA: yes, yes, and yes
+
+TG3 agrees
+
+(from that chat) RBN: If privacy is an important security concern, then you must have an unforgeable correlation mechanism. Auto-correlation by source location is unforgeable.

meetings/2024/2024-07-03.md

@@ -0,0 +1,31 @@
+# 28th Meeting of TC39-TG3 - 2024-07-03
+
+## Folks
+
+> [!NOTE]
+> Add a ✓ to the `Present` column in the table below, and add anyone missing. Also add to [the template](../template.md) and [GitHub team](https://github.com/orgs/tc39/teams/tg3) if the individual is a regular attendee.
+
+| Present | Name             | GH Username     | TLA | Affiliation |
+| :-----: | ---------------- | --------------- | --- | ----------- |
+|    ✓    | Chris de Almeida | @ctcpip         | CDA | IBM         |
+|    ✓    | Daniel Ehrenberg | @littledan      | DE  | Bloomberg   |
+|    ✓    | Eli Grey         | @eligrey        |     | Transcend   |
+|    ✓    | Jasvir Nagra     | @jasvir         |     | Picovisor   |
+|    ✓    | Jovonni          |                 |     |             |
+|    ✓    | Kris Kowal       | @kriskowal      | KKL | Agoric      |
+|    ✓    | Mathieu Hofman   | @mhofman        | MHN | Agoric      |
+|    ✓    | Michael Ficarra  | @michaelficarra | MF  | F5          |
+|    ✓    | Nicolò Ribaudo   | @nicolo-ribaudo | NRO | Igalia      |
+|    ✓    | Richard Gibson   | @gibson042      | RGN | Agoric      |
+|    ✓    | Ulises Gascón    | @UlisesGascon   | UG  | One Beyond  |
+
+## Agenda
+
+> [!NOTE]
+> See [backlog.md](../backlog.md) for outstanding action items and agenda topics.
+
+## Minutes
+
+* Nicolò clarified the deferred module exports namespaces are different from the moddule exports namespace but there will only be one for each module instance. It exists to allow property access for a failed import to rethrow the import error.
+* We briefly recorded a problem statement for module source reflection in terms of (imports, exports, reexports) versus bindings.
+* Nicolò mentioned that he and Legedecas will be bringing <https://github.com/tc39/ecma262/issues/3160> to plenary

meetings/2024/2024-07-10.md

@@ -0,0 +1,23 @@
+# 29th Meeting of TC39-TG3 - 2024-07-10
+
+## Folks
+
+> [!NOTE]
+> Add a ✓ to the `Present` column in the table below, and add anyone missing. Also add to [the template](../template.md) and [GitHub team](https://github.com/orgs/tc39/teams/tg3) if the individual is a regular attendee.
+
+| Present | Name             | GH Username     | TLA | Affiliation |
+| :-----: | ---------------- | --------------- | --- | ----------- |
+|    ✓    | Chip Morningstar | @FUDCo          | CM  | Consensys   |
+|    ✓    | Chris de Almeida | @ctcpip         | CDA | IBM         |
+|    ✓    | Jordan Harband   | @ljharb         | JHD | HeroDevs    |
+|    ✓    | Kris Kowal       | @kriskowal      | KKL | Agoric      |
+|    ✓    | Mark Miller      | @erights        | MM  | Agoric      |
+|    ✓    | Michael Ficarra  | @michaelficarra | MF  | F5          |
+|    ✓    | Richard Gibson   | @gibson042      | RGN | Agoric      |
+
+## Agenda
+
+> [!NOTE]
+> See [backlog.md](../backlog.md) for outstanding action items and agenda topics.
+
+private discussion of <https://github.com/tc39/Reflector/issues/535>

meetings/backlog.md

@@ -50,3 +50,4 @@
 - MM: Promise.resolve should not cause a re-entrancy hazard -- MAH would be good to advise on this
   - internal promise resolve operation (original/initial behavior of Promise.resolve) - simplify that to not check the constructor properry and thereby to not give user code a chance to run during the Promise.resolve operation
 - RGN: lack of constraints around ordering for reporting own keys even on an Object.freeze() frozen object
+- DE: async context and poorly behaved dynamic scope