this post was submitted on 12 Dec 2023
247 points (95.9% liked)

Programmer Humor

32380 readers
1439 users here now

Post funny things about programming here! (Or just rant about your favourite programming language.)

Rules:

founded 5 years ago
MODERATORS
AgreeableLandscape@lemmy.ml
cat_programmer@lemmy.ml
247
SPAs were a mistake (lemmy.world)
submitted 11 months ago by treechicken@lemmy.world to c/programmerhumor@lemmy.ml
23 comments fedilink hide all child comments
 
you are viewing a single comment's thread
view the rest of the comments
[–] gornius@lemmy.world 24 points 11 months ago

Then again, cookie auth is vulnerable to CSRF. Pick your poison.

Although CSRF protection just adds a minor inconvenience, while there is never a guarantee your code is XSS vulnerability free.