That clever @mathias has started his career at Google by trying to XSS me with a QR code. He's going to fit in just fine... :)
-
-
The question is: has CSP protected you? ;-)
2 replies 0 retweets 0 likes
Replying to @mniemietz @mikewest
Actually, in this case, CSP was enough to avoid the attack scenario: https://github.com/PaulKinlan/qrcode/pull/22 … (The actual fix was https://github.com/PaulKinlan/qrcode/pull/21 ….)
10:43 AM - 1 Jun 2017
0 replies
0 retweets
3 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
JavaScript, HTML, CSS, HTTP, performance, security, Bash, Unicode, i18n, macOS.