Follow-up for the May 2026 protocol cleanup.\n\nTasks:\n- Document canonical unpadded standard Base64, not base64url or hex.\n- Describe the legacy-named domain field as a serialized Web origin (scheme/host/port), not a host-only value.\n- Update examples so claimsHash covers every direct-child meta claim serialized as sorted name:content\n records.\n- Update canonicalization docs to include signed semantic attributes: href, src, alt, aria-label.\n- Clarify browser verification should prefer server HTML snapshots and treat live-DOM divergence as stale; data-htmltrust-ignore has no normative effect.\n- Refresh any static demo canonicalization code to match the shared canonicalization library.
Follow-up for the May 2026 protocol cleanup.\n\nTasks:\n- Document canonical unpadded standard Base64, not base64url or hex.\n- Describe the legacy-named domain field as a serialized Web origin (scheme/host/port), not a host-only value.\n- Update examples so claimsHash covers every direct-child meta claim serialized as sorted name:content\n records.\n- Update canonicalization docs to include signed semantic attributes: href, src, alt, aria-label.\n- Clarify browser verification should prefer server HTML snapshots and treat live-DOM divergence as stale; data-htmltrust-ignore has no normative effect.\n- Refresh any static demo canonicalization code to match the shared canonicalization library.