home.social
Sign in Create account

#javascriptsecurity — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #javascriptsecurity, aggregated by home.social.

  1. JavaScriptBuzz @[email protected] ·

    What's wrong with this JavaScript prototype pollution?

    What's wrong with this JavaScript prototype pollution from user merge. The JavaScript code merges user input into an object. In JavaScript __proto__ or constructor can pollute all objects.

    #whatswrongwiththisjavascriptcode #javascriptbug #javascriptproductionbug #javascriptdebugging #javascriptbackend #javascriptcodereview #javascriptsecurity #javascriptperformance #javascriptreliability #jav...

    youtube.com/watch?v=ReBpyhpmITk

    #whatswrongwiththisjavascriptcode #javascriptbug #javascriptproductionbug #javascriptdebugging #javascriptbackend #javascriptcodereview
  2. JavaScriptBuzz @[email protected] ·

    What's wrong with this JavaScript BigInt mixing with Number?

    What's wrong with this JavaScript BigInt mixing with Number in a calculator. The JavaScript code adds BigInt and Number. In JavaScript this throws and crashes the app.

    #whatswrongwiththisjavascriptcode #javascriptbug #javascriptproductionbug #javascriptdebugging #javascriptbackend #javascriptcodereview #javascriptsecurity #javascriptperformance #javascriptreliability #javascriptapi #jav...

    youtube.com/watch?v=Ldda7gXnons

    #whatswrongwiththisjavascriptcode #javascriptbug #javascriptproductionbug #javascriptdebugging #javascriptbackend #javascriptcodereview
  3. The DefendOps Diaries @[email protected] ·

    A tiny flaw in a common math eval library is opening the door to remote attacks across hundreds of projects. How did a simple overlook snowball into a security crisis—and what fixes can save the day?

    thedefendopsdiaries.com/unders

    #rce
    #javascriptsecurity
    #cve202512735
    #opensource
    #cybersecurity
    #vulnerabilitymanagement
    #expr-eval
    #remotecodeexecution
    #securitypatch

    #rce #javascriptsecurity #cve202512735 #opensource #cybersecurity #vulnerabilitymanagement
  4. xoron :verified: @[email protected] ·

    Application-Level Cascading Cipher

    positive-intentions.com/blog/c

    #encryption #cryptography #defenseindepth #AES #DiffieHellman #MLSCrypto #SignalProtocol #browsercrypto #JavaScriptsecurity #cascadingcipher #layeredencryption #WebCryptoAPI #security

    #encryption #cryptography #defenseindepth #aes #diffiehellman #mlscrypto
  5. xoron :verified: @[email protected] ·

    Application-Level Cascading Cipher

    positive-intentions.com/blog/c

    #encryption #cryptography #defenseindepth #AES #DiffieHellman #MLSCrypto #SignalProtocol #browsercrypto #JavaScriptsecurity #cascadingcipher #layeredencryption #WebCryptoAPI #security

    #encryption #cryptography #defenseindepth #aes #diffiehellman #mlscrypto
  6. xoron :verified: @[email protected] ·

    Application-Level Cascading Cipher

    positive-intentions.com/blog/c

    #encryption #cryptography #defenseindepth #AES #DiffieHellman #MLSCrypto #SignalProtocol #browsercrypto #JavaScriptsecurity #cascadingcipher #layeredencryption #WebCryptoAPI #security

    #security #webcryptoapi #layeredencryption #cascadingcipher #javascriptsecurity #browsercrypto