Has anyone done usability studies with developers on why vulns like XSS are so common? Which changes to the languages/tools affect the probability of the vulnerability appearing the most? Can you make a language that’s extremely hard for humans to write bug-free programs in?
-
-
For making DOM APIs safe, see https://github.com/WICG/trusted-types … (+@koto). For provably safe server-side markup generation, a good reference is https://ai.google/research/pubs/pub42934 …
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.