Uncaught SecurityError is a false positive?


#1

Dear folks -

I have just received a Critical Error message that:

<<
Uncaught SecurityError: Blocked a frame with origin “https://<HOST>” from accessing a cross-origin frame.
>>

However, Brave appears unique in producing the error on this page (I’ve tried Edge, Chrome, Epic and all work fine) and the detailed report suggests that Brave is trapping something which it shouldn’t:

<<
Message: Uncaught SecurityError: Blocked a frame with origin “https://<HOST>” from accessing a cross-origin frame.
Url: https://<HOST>/ecp/15.0.1320.4/scripts/common.js
Line: 1
>>

As is identical in both cases, I can’t see that there is a cross-origin problem.

I’d be happy to provide a copy of the full, unedited report to Brave, but can’t do so here for security reasons.

OS and Brave version information (from Help/About Brave) is as follows:

Brave 0.20.30
V8 6.4.388.40
rev 8b78402
Muon 4.7.9
OS Release 10.0.16299
Update Channel Release
OS Architecture x64
OS Platform Microsoft Windows
Node.js 7.9.0
Brave Sync v1.4.2
libchromiumcontent 64.0.3282.119

Many TIA.