※ Hiding JSON-formatted data in the DOM with CSP enabled: http://mathiasbynens.be/notes/json-dom-csp …
-
-
Replying to @avlidienbrunn
@avlidienbrunn That’s why I have that disclaimer link at the bottom. This doesn’t absolve you from having to escape user-supplied content :)1 reply 0 retweets 0 likes -
Replying to @avlidienbrunn
@avlidienbrunn …or just escape user input correctly1 reply 0 retweets 0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.