The Web Application Security Working Group has published the following two First Public Working Drafts:

• Web Cryptography Level 2: This specification describes a JavaScript API for performing basic cryptographic operations in web applications, such as hashing, signature generation and verification, and encryption and decryption. Additionally, it describes an API for applications to generate and/or manage the keying material necessary to perform these operations. Uses for this API range from user or service authentication, document or code signing, and the confidentiality and integrity of communications.
• Subresource Integrity: This specification defines a mechanism by which user agents may verify that a fetched resource has been delivered without unexpected manipulation.