Very dangerous conclusion in this post. Content-Security-Policy does NOT make it safe to run untrusted JavaScript on your site. https://hackernoon.com/im-harvesting-credit-card-numbers-and-passwords-from-your-site-here-s-how-9a8cb347c5b5 … 1/3
-
-
I went looking for your tweet yesterday to say thanks for prompting me to read up on CSP vulnerabilities, and tell you I'd updated the post as a result. Thanks for the classy corrections!
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
to