|
|
|
|
|
|
by lclarkmichalek
3057 days ago
|
|
|
If you're trying to transmit trusted information in clientside js, then one common pattern is to have a user's browser to fire the data initially, then crawl to obtain a trusted copy. The last company I worked for did this, but skipped the second step, which led to all kinds of XSS attacks. |
|
|