Bo Cupp

Mentioning some interested parties: @ipopescu93 @inexorabletash @melanierichards.

> Does the following code in the explainer imply that the EyeDropper wouldn't have its own UI when "closed"? Correct. The EyeDropper would not have UI when closed. > While...

> Whether there is "closed UI" or not, there is "opened UI" and that being so what sort of customization pattern do you see being best to deliver with this...

@ericlaw1979 sorry for the slow reply. Is gesture-jacking the new term for [click-jacking](https://en.wikipedia.org/wiki/Clickjacking)? I prefer the usability of streaming back colors as opposed to getting one color per click. FWIW...

@domenic thanks for the link. I'm not connecting the dots on how the process an iframe runs in affects the user's ability to sample a color, or precludes an attacker...

@domenic and @ericlaw1979 thanks for explaining how COOP + COEP would help this scenario. It seems heavier than the other mitigations I've proposed if those work. @ericlaw1979 regarding this comment:...

@ericlaw1979 thanks for these attack examples. It may be the case that we initially ship with only one color being picked for other reasons like [this one](https://github.com/MicrosoftEdge/MSEdgeExplainers/issues/382). My preference though...

@domenic, @mikewest, @camillelamy, the threat that @ericlaw1979 pointed out dealt with sampling cross origin content, but the API allows sampling colors from the desktop / non-browser apps / other open...

@krgovind, we prefer not to restrict it to the page content area. This API competes with system color dialogs which can select any pixel on the screen. Some browsers use...

@krgovind I just noticed that @ericlaw1979 commented [here](https://github.com/MicrosoftEdge/MSEdgeExplainers/issues/385#issuecomment-747671294) with a potential attack that I think illustrates your concern. I suggested [these mitigations](https://github.com/MicrosoftEdge/MSEdgeExplainers/issues/385#issuecomment-760046657). Let me know if they would address your...