Did you know that using `target=_blank` for user-supplied links is a security risk? `rel=noopener` is here to help. https://mathiasbynens.github.io/rel-noopener/
-
-
Replying to @arneswinnen
@mathias PS Facebook, Google, Github didn't agree that this was a security risk after reporting a couple of months ago. Go figure..1 reply 1 retweet 2 likes -
Replying to @arneswinnen
@arneswinnen@mathias I reported it to fb a while back too, they accepted it was something they planned to fix, but marked it as dupe1 reply 0 retweets 0 likes
Replying to @zseano
@zseano @arneswinnen FWIW, the Chromium bug is here: https://bugs.chromium.org/p/chromium/issues/detail?id=168988 … (They made it public because all browsers have this behavior.)
5:31 AM - 15 Mar 2016
0 replies
2 retweets
3 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
JavaScript, HTML, CSS, HTTP, performance, security, Bash, Unicode, i18n, macOS.