From 8a974e246560f859c1c1e2c71b5a26df1663784c Mon Sep 17 00:00:00 2001
From: Arthur Sonzogni <arthursonzogni@chromium.org>
Date: Mon, 20 Sep 2021 15:15:25 +0200
Subject: [PATCH] Address annevk@ comment about redirects.

---
 fetch.bs | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/fetch.bs b/fetch.bs
index d169d7411..5446b42c4 100644
--- a/fetch.bs
+++ b/fetch.bs
@@ -1905,7 +1905,8 @@ source of security bugs. Please seek security review for features that deal with
  is not "<code><a for="embedder policy value">credentialless</a></code>", return true.</p>
 
  <li><p>If <var>request</var>'s <a for=request>origin</a> is <a>same origin</a> with
- <var>request</var>'s <a for=request>current URL</a>'s <a for=url>origin</a>, return true.</p>
+ <var>request</var>'s <a for=request>current URL</a>'s <a for=url>origin</a> and
+ <var>request</var>'s <a for=request>tainted origin flag</a> is not set, return true.</p>
 
  <li><p>Return false.</p>
 </ol>