Software's best weekly news brief, deep technical interviews & talk show.
…
continue reading
Inhoud geleverd door Changelog Media. Alle podcastinhoud, inclusief afleveringen, afbeeldingen en podcastbeschrijvingen, wordt rechtstreeks geüpload en geleverd door Changelog Media of hun podcastplatformpartner. Als u denkt dat iemand uw auteursrechtelijk beschermde werk zonder uw toestemming gebruikt, kunt u het hier beschreven proces https://nl.player.fm/legal volgen.
Overeenkomstig met JS Party: JavaScript, CSS, Web Development
Stay current on JavaScript, Node, and Front-End development. Learn from experts in programming, careers, and technology every week. Become a supporter of this podcast: https://www.spreaker.com/podcast/javascript-jabber--6102064/support.
…
continue reading
BBC Radio 5 live’s award winning gaming podcast, discussing the world of video games and games culture.
…
continue reading
On The Bike Shed, hosts Joël Quenneville and Stephanie Minn discuss development experiences and challenges at thoughtbot with Ruby, Rails, JavaScript, and whatever else is drawing their attention, admiration, or ire this week.
…
continue reading
Talk Python to Me is a weekly podcast hosted by developer and entrepreneur Michael Kennedy. We dive deep into the popular packages and software developers, data scientists, and incredible hobbyists doing amazing things with Python. If you're new to Python, you'll quickly learn the ins and outs of the community by hearing from the leaders. And if you've been Pythoning for years, you'll learn about your favorite packages and the hot new ones coming out of open source.
…
continue reading
1
Syntax - Tasty Web Development Treats
Wes Bos & Scott Tolinski - Full Stack JavaScript Web Developers
4k
894
Full Stack Developers Wes Bos and Scott Tolinski dive deep into web development topics, explaining how they work and talking about their own experiences. They cover from JavaScript frameworks like React, to the latest advancements in CSS to simplifying web tooling.
…
continue reading
Exploring React Native Together
…
continue reading
What is the internet doing to us? The Times tech columnist Kevin Roose discovers what happens when our lives move online. Unlock full access to New York Times podcasts and explore everything from politics to pop culture. Subscribe today at nytimes.com/podcasts or on Apple Podcasts and Spotify.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Hanselminutes is Fresh Air for Developers. A weekly commute-time podcast that promotes fresh technology and fresh voices. Talk and Tech for Developers, Life-long Learners, and Technologists.
…
continue reading
Player FM - Podcast-app
Ga offline met de app Player FM !
Ga offline met de app Player FM !
))
When 3rd party JavaScript attacks
Manage episode 436906040 series 1391411
Inhoud geleverd door Changelog Media. Alle podcastinhoud, inclusief afleveringen, afbeeldingen en podcastbeschrijvingen, wordt rechtstreeks geüpload en geleverd door Changelog Media of hun podcastplatformpartner. Als u denkt dat iemand uw auteursrechtelijk beschermde werk zonder uw toestemming gebruikt, kunt u het hier beschreven proces https://nl.player.fm/legal volgen.
Simon Wijckmans from c/side joins Jerod & Nick to discuss the Pollyfill attack in detail. What does it mean for web developers & client-side security going forward?
Changelog++ members save 1 minute on this episode because they made the ads disappear. Join today!
Sponsors:
- Wix – Wix Sudio is for devs who build websites, sell apps, go headless, or manage clients. Integrate, extend and write custom scripts in a VS code-based IDE. Leverage zero set up dev, test and production environments. Ship faster with an AI code assistant. And work with Wix headless API’s on any tech stack.
Featuring:
- Simon Wijckmans – Website, GitHub, LinkedIn, X
- Jerod Santo – GitHub, LinkedIn, Mastodon, X
- Nick Nisi – Website, GitHub, Mastodon, X
Show Notes:
Something missing or broken? PRs welcome!
Hoofdstukken
1. It's party time, y'all (00:00:00)
2. Hello party people (00:00:56)
3. Welcoming Simon (00:01:23)
4. Hotlinking? Hotlinking! (00:01:47)
5. The Polyfill attack (00:02:56)
6. Nick gets called out (00:11:58)
7. Sponsor: Wix (00:14:52)
8. Reasonable risks (00:15:47)
9. Trust? But, verify (00:19:00)
10. How to verify (00:20:49)
11. Mitigation techniques (00:23:51)
12. Leading from the bottom (00:25:50)
13. Nick gets more secure (00:28:42)
14. What c/side offers (00:29:32)
15. Jerod avenges Nick (00:33:57)
16. Does c/side inject scripts? (00:38:22)
17. What the browsers could do (00:39:49)
18. Consider it cut (00:44:43)
19. Doing better server-side (00:45:31)
20. Ghoulish overkill (00:48:24)
21. Closing time (00:51:16)
22. Next up on the pod (00:51:49)
361 afleveringen
Delen
Manage episode 436906040 series 1391411
Inhoud geleverd door Changelog Media. Alle podcastinhoud, inclusief afleveringen, afbeeldingen en podcastbeschrijvingen, wordt rechtstreeks geüpload en geleverd door Changelog Media of hun podcastplatformpartner. Als u denkt dat iemand uw auteursrechtelijk beschermde werk zonder uw toestemming gebruikt, kunt u het hier beschreven proces https://nl.player.fm/legal volgen.
Simon Wijckmans from c/side joins Jerod & Nick to discuss the Pollyfill attack in detail. What does it mean for web developers & client-side security going forward?
Changelog++ members save 1 minute on this episode because they made the ads disappear. Join today!
Sponsors:
- Wix – Wix Sudio is for devs who build websites, sell apps, go headless, or manage clients. Integrate, extend and write custom scripts in a VS code-based IDE. Leverage zero set up dev, test and production environments. Ship faster with an AI code assistant. And work with Wix headless API’s on any tech stack.
Featuring:
- Simon Wijckmans – Website, GitHub, LinkedIn, X
- Jerod Santo – GitHub, LinkedIn, Mastodon, X
- Nick Nisi – Website, GitHub, Mastodon, X
Show Notes:
Something missing or broken? PRs welcome!
Hoofdstukken
1. It's party time, y'all (00:00:00)
2. Hello party people (00:00:56)
3. Welcoming Simon (00:01:23)
4. Hotlinking? Hotlinking! (00:01:47)
5. The Polyfill attack (00:02:56)
6. Nick gets called out (00:11:58)
7. Sponsor: Wix (00:14:52)
8. Reasonable risks (00:15:47)
9. Trust? But, verify (00:19:00)
10. How to verify (00:20:49)
11. Mitigation techniques (00:23:51)
12. Leading from the bottom (00:25:50)
13. Nick gets more secure (00:28:42)
14. What c/side offers (00:29:32)
15. Jerod avenges Nick (00:33:57)
16. Does c/side inject scripts? (00:38:22)
17. What the browsers could do (00:39:49)
18. Consider it cut (00:44:43)
19. Doing better server-side (00:45:31)
20. Ghoulish overkill (00:48:24)
21. Closing time (00:51:16)
22. Next up on the pod (00:51:49)
361 afleveringen
Tüm bölümler
×
Welkom op Player FM!
Player FM scant het web op podcasts van hoge kwaliteit waarvan u nu kunt genieten. Het is de beste podcast-app en werkt op Android, iPhone en internet. Aanmelden om abonnementen op verschillende apparaten te synchroniseren.
Overeenkomstig met JS Party: JavaScript, CSS, Web Development
Software's best weekly news brief, deep technical interviews & talk show.
…
continue reading
Stay current on JavaScript, Node, and Front-End development. Learn from experts in programming, careers, and technology every week. Become a supporter of this podcast: https://www.spreaker.com/podcast/javascript-jabber--6102064/support.
…
continue reading
BBC Radio 5 live’s award winning gaming podcast, discussing the world of video games and games culture.
…
continue reading
On The Bike Shed, hosts Joël Quenneville and Stephanie Minn discuss development experiences and challenges at thoughtbot with Ruby, Rails, JavaScript, and whatever else is drawing their attention, admiration, or ire this week.
…
continue reading
Talk Python to Me is a weekly podcast hosted by developer and entrepreneur Michael Kennedy. We dive deep into the popular packages and software developers, data scientists, and incredible hobbyists doing amazing things with Python. If you're new to Python, you'll quickly learn the ins and outs of the community by hearing from the leaders. And if you've been Pythoning for years, you'll learn about your favorite packages and the hot new ones coming out of open source.
…
continue reading
1
Syntax - Tasty Web Development Treats
Wes Bos & Scott Tolinski - Full Stack JavaScript Web Developers
4k894
Full Stack Developers Wes Bos and Scott Tolinski dive deep into web development topics, explaining how they work and talking about their own experiences. They cover from JavaScript frameworks like React, to the latest advancements in CSS to simplifying web tooling.
…
continue reading
Exploring React Native Together
…
continue reading
What is the internet doing to us? The Times tech columnist Kevin Roose discovers what happens when our lives move online. Unlock full access to New York Times podcasts and explore everything from politics to pop culture. Subscribe today at nytimes.com/podcasts or on Apple Podcasts and Spotify.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Hanselminutes is Fresh Air for Developers. A weekly commute-time podcast that promotes fresh technology and fresh voices. Talk and Tech for Developers, Life-long Learners, and Technologists.
…
continue reading
Player FM - Podcast-app
Ga offline met de app Player FM !
Ga offline met de app Player FM !
