New Blog post: "Multiple things can be true at the same time" - frederikbraun.de/feels-and-ll...
Dear reader, I am sure you have read a lot of blog posts about AI in the past weeks or months. This is my post.…
Major announcement: My highly successful Applied Cryptography course taught last year at the American University of Beirut is returning as an online course, available for FREE for any qualifying student from any Lebanese university!
Read more + apply today — and please spread the word!
hat-tip to @shhnjk.bsky.social 🤓
Nadim Kobeissi
The S in interoperability (https://frederikbraun.de/the-s-in-interoperability.html): A blog post about standards, their proliferation and the issues that arive over time.
The S in interoperability (https://frederikbraun.de/the-s-in-interoperability.html): A blog post about standards, their proliferation and the issues that arive over time.
Composing Sanitizer configurations (https://frederikbraun.de/composable-sanitizers.html): The HTML Sanitizer API allows multiple ways to customize the default allow list and this blog post aims to describe a few variations and tricks we came up with while writing the specification.
OK, ok. I'll stop blogging for today. I promise.
blog.mozilla.org/en/privacy-s...
Freddy
Freddy
New blog post: Perfect types with `setHTML()` - https://frederikbraun.de/perfect-types-with-sethtml.html - TLDR: Use require-trusted-types-for 'script'; trusted-types 'none'; in your CSP and nothing besides setHTML() works, essentially removing all DOM-XSS risks....
Next up, 'Improving the Trustworthiness of Javascript on the Web', presented by Michael Rosenberg, Giulio Berra, Ezzudin Alkotob, and Dennis Jackson
#realworldcrypto
