|
|
|
|
|
|
by commandlinefan
188 days ago
|
|
|
> They were responsive, professional, and took the findings seriously, patching the issues promptly. The "issue" is that they're returning the entire PNR dataset to the front-end in the first place. He doesn't detail how they fixed it, but there's no reason in the world that this entire dataset should be dumped into Javascript. I got into pretty heated arguments with folks about this at Travelocity and this shit is exactly why I was so adamant. |
|
|