Nits

index.src.html

@@ -527,7 +527,7 @@ <h3 id="private-network-request-heading">Private Network Request</h3>
   a change is not deemed worth the payoff for now. This can be shipped as an
   incremental improvement later on.
 
-  NOTE: Some [=local network requests=] are more challenging to secure than
+  NOTE: Some [=private network requests=] are more challenging to secure than
   others. See [[#rollout-difficulties]] for more details.
 
   <h3 id="headers">Additional CORS Headers</h3>
@@ -918,14 +918,17 @@ <h4 id="fetching">Fetching</h4>
                   "<a http-header>`Private-Network-Access-ID`</a>" and
                   |response|'s [=response/header list=].
 
-              1.  if |targetId| is invalid, return a [=network error=].
+              1.  if |targetId| does not a string of 6 hexadecimal bytes
+                  separated by colons, return a [=network error=].
 
               1.  Let |targetName| be the result of [=extracting header list
                   values=] given
                   "<a http-header>`Private-Network-Access-Name`</a>" and
                   |response|'s [=response/header list=].
 
-              1.  if |targetName| is invalid, return a [=network error=].
+              1.  if |targetName| does not match the [ECMAScript] regexp
+                  /^[a-z0-9_-.]+$/ or has more than 248 UTF-8 code units,
+                  return a [=network error=].
 
               1.  Let |state| be the result of [=requesting permission to use=]
                   the following descriptor:
@@ -980,6 +983,10 @@ <h4 id="fetch-api">Fetch API</h4>
         |request|'s [=request/client=] is a [=secure context=], then switch on
         |init|["{{RequestInit/targetAddressSpace}}"]:
         <dl class=switch>
+          <dt>public
+          <dd>Set |request|'s [=target IP address space=] to [=IP address
+            space/public=]
+
           <dt>private
           <dd>Set |request|'s [=target IP address space=] to [=IP address
             space/private=]