Search
Don’t Snore on CORS
10.11.2021
Whatever, I just needed a title. Everyone’s favorite web security feature has crossed my desk a bunch of times lately and I always feel like that is a sign I should write something because that’s what blogging is.
The main …
The post Don’t Snore on CORS appeared first...
Collective #683
14.10.2021
Building a multi-select component * How to win at CORS * Kuma * Parcel v2 * Flowrift
The post Collective #683 appeared first on Codrops
Securing Your Website With Subresource Integrity
14.6.2021
When you load a file from an external server, you’re trusting that the content you request is what you expect it to be. Since you don’t manage the server yourself, you’re relying on the security of yet another third party …
The post Securing Your Website With Subresource Integrity appeared...
Weekly Platform News: Reduced Motion, CORS, WhiteHouse.gov, popups, and 100vw
26.2.2021
In this week’s roundup, we highlight a proposal for a new <popup> element, check the use of prefers-reduced-motion on award-winning sites, learn how to opt into cross-origin isolation, see how WhiteHouse.gov approaches accessibility, and warn the dangers of 100vh.…
The post...
What I Like About Vue
25.7.2019
Dave Rupert digs into some of his favorite Vue features and one particular issue that he has with React:
I’ve come to realize one thing I don’t particularly like about React is jumping into a file, reading the top for the state, jumping to the bottom to find the render function, then following...
Zoom, CORS, and the Web
23.7.2019
It's sorta sad by funny that that big Zoom vulnerability thing was ultimately related to web technology and not really the app itself.
There is this idea of custom protocols or "URL schemes." So, like gittower:// or dropbox:// or whatever. A native app can register them, then URLs that hit them...
Collective #510
22.4.2019
Svelte 3 * Mozilla WebThings * Tiny Mirror * CORS Tutorial * Inclusively Hidden * What is a Design System?
Collective #510 was written by Pedro Botelho and published on Codrops
WDRL — Edition 231: Pupeteer 15, Safari 12, Tracking Protection, Card Modules, Web Performance Tips And A CORS Guide
8.6.2018
Hey,
it’s interesting how we can always think we know almost everything about something but then realize that we actually don’t know much. I had this feeling when reading through Heydon Pickering’s article about building a card with code: A lot of these things are clear but there are so many...
Collective #422
7.6.2018
G6 * Priority Nav Scroller * CORS * Sketch.systems * 10 Things I Regret About Node.js * Supercraft * The History of Connection
Collective #422 was written by Pedro Botelho and published on Codrops
Build Nodejs APIs Using Serverless
17.5.2018
Simona Cotin did a great talk at Microsoft Build about Serverless technologies, called "Build Node APIs Using Serverless." In this talk, she addresses pretty much every major gotcha that you might run into while creating Serverless infrastructure for JavaScript applications. Some of the topics...