I'm not sure if you are arguing for even more attention on CSP, or what :-).
Sure; but there are useful ideas for limiting XSS surface that we can add as opt-in
-
-
Being automatically against them "because CSP" is short-sighted and unnecessary.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.