[1] mikewest/sec-metadata: `Sec-Metadata` is a header! () <https://github.com/mikewest/sec-metadata>
[2] Re: Formal Model of Malicious Cross Origin Requests Mitigation using CORP (was: A primer on cross-origin information leaks (Artur Janc著, ) <https://lists.w3.org/Archives/Public/public-webappsec/2018May/0020.html>