Y
Hacker News
new
|
ask
|
show
|
jobs
by
cluckindan
338 days ago
Because using htmx is asking to get defaced via XSS, or worse. Security is an afterthought for the project, which is evident from the placement of the related documentation.
2 comments
recursivedoubts
337 days ago
security rules for htmx are no different than any other hypermedia approach: you need to escape all user content
https://htmx.org/essays/web-security-basics-with-htmx/
link
rockwotj
337 days ago
How is this better?
link
cluckindan
337 days ago
It probably isn’t.
link
https://htmx.org/essays/web-security-basics-with-htmx/