@bascule @jcoglan @EyalL @benjamin_smith i think jquery-rails sends token on ajax requests. people who just use cdn jquery don’t get that
@jcoglan @EyalL @benjamin_smith and Rails 3 auto-escapes all strings unless you state otherwise. Is there still XSS in Rails apps?
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@bascule@jcoglan@benjamin_smith you may still specify otherwise incorrectly, impossible with Yesod. I don't know about js attack vectorsThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.