Software's best weekly news brief, deep technical interviews & talk show.
…
continue reading
Content provided by Changelog Media. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Changelog Media or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
Similar to Changelog Master Feed
On The Bike Shed, hosts Joël Quenneville and Stephanie Minn discuss development experiences and challenges at thoughtbot with Ruby, Rails, JavaScript, and whatever else is drawing their attention, admiration, or ire this week.
…
continue reading
Three nerds discussing tech, Apple, programming, and loosely related matters.
…
continue reading
The world of computer programming is vast in scope. There are literally thousands of topics to cover and no one person could ever reach them all. One of the goals of the Coding Blocks podcast is to introduce a number of these topics to the audience so they can learn during their commute or while cutting the grass. We will cover topics such as best programming practices, design patterns, coding for performance, object oriented coding, database design and implementation, tips, tricks and a who ...
…
continue reading
Get ready for a weekly dose of all things Enterprise Software and Cloud Computing! Join us as we dive into topics including Kubernetes, DevOps, Serverless, Security and Coding. Plus, we’ll keep you entertained with plenty of off-topic banter and nonsense. Don’t worry if you miss the latest industry conference - we’ve got you covered with recaps of all the latest news from AWS, Microsoft Azure, Google Cloud Platform (GCP) and the Cloud Native Computing Foundation (CNCF).
…
continue reading
An open show powered by community LINUX Unplugged takes the best attributes of open collaboration and turns it into a weekly show about Linux.
…
continue reading
A podcast about web design and development.
…
continue reading
1
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
Jerry Bell and Andrew Kalat
Defensive Security is a weekly information security podcast which reviews recent high profile cyber security breaches, data breaches, malware infections and intrusions to identify lessons that we can learn and apply to the organizations we protect.
…
continue reading
Material is a weekly discussion about the Google and Android universe. Your intrepid hosts try to answer the question, “What holds up the digital world?” The answer, so far, is that it’s Google all the way down. Hosted by Andy Ihnatko and Florence Ion.
…
continue reading
Technical interviews about software topics.
…
continue reading
Player FM - Podcast App
Go offline with the Player FM app!
Go offline with the Player FM app!
))
When 3rd party JavaScript attacks (JS Party #336)
Manage episode 436912136 series 1280399
Content provided by Changelog Media. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Changelog Media or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
Simon Wijckmans from c/side joins Jerod & Nick to discuss the Pollyfill attack in detail. What does it mean for web developers & client-side security going forward?
Changelog++ members save 1 minute on this episode because they made the ads disappear. Join today!
Sponsors:
- Wix – Wix Sudio is for devs who build websites, sell apps, go headless, or manage clients. Integrate, extend and write custom scripts in a VS code-based IDE. Leverage zero set up dev, test and production environments. Ship faster with an AI code assistant. And work with Wix headless API’s on any tech stack.
Featuring:
- Simon Wijckmans – Twitter, GitHub, LinkedIn, Website
- Jerod Santo – Mastodon, Twitter, GitHub, LinkedIn
- Nick Nisi – Mastodon, Twitter, GitHub, Website
Show Notes:
Something missing or broken? PRs welcome!
Chapters
1. It's party time, y'all (00:00:00)
2. Hello party people (00:00:56)
3. Welcoming Simon (00:01:23)
4. Hotlinking? Hotlinking! (00:01:47)
5. The Polyfill attack (00:02:56)
6. Nick gets called out (00:11:58)
7. Sponsor: Wix (00:14:52)
8. Reasonable risks (00:15:47)
9. Trust? But, verify (00:19:00)
10. How to verify (00:20:49)
11. Mitigation techniques (00:23:51)
12. Leading from the bottom (00:25:50)
13. Nick gets more secure (00:28:42)
14. What c/side offers (00:29:32)
15. Jerod avenges Nick (00:33:57)
16. Does c/side inject scripts? (00:38:22)
17. What the browsers could do (00:39:49)
18. Consider it cut (00:44:43)
19. Doing better server-side (00:45:31)
20. Ghoulish overkill (00:48:24)
21. Closing time (00:51:16)
22. Next up on the pod (00:51:49)
2106 episodes
Share
Manage episode 436912136 series 1280399
Content provided by Changelog Media. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Changelog Media or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
Simon Wijckmans from c/side joins Jerod & Nick to discuss the Pollyfill attack in detail. What does it mean for web developers & client-side security going forward?
Changelog++ members save 1 minute on this episode because they made the ads disappear. Join today!
Sponsors:
- Wix – Wix Sudio is for devs who build websites, sell apps, go headless, or manage clients. Integrate, extend and write custom scripts in a VS code-based IDE. Leverage zero set up dev, test and production environments. Ship faster with an AI code assistant. And work with Wix headless API’s on any tech stack.
Featuring:
- Simon Wijckmans – Twitter, GitHub, LinkedIn, Website
- Jerod Santo – Mastodon, Twitter, GitHub, LinkedIn
- Nick Nisi – Mastodon, Twitter, GitHub, Website
Show Notes:
Something missing or broken? PRs welcome!
Chapters
1. It's party time, y'all (00:00:00)
2. Hello party people (00:00:56)
3. Welcoming Simon (00:01:23)
4. Hotlinking? Hotlinking! (00:01:47)
5. The Polyfill attack (00:02:56)
6. Nick gets called out (00:11:58)
7. Sponsor: Wix (00:14:52)
8. Reasonable risks (00:15:47)
9. Trust? But, verify (00:19:00)
10. How to verify (00:20:49)
11. Mitigation techniques (00:23:51)
12. Leading from the bottom (00:25:50)
13. Nick gets more secure (00:28:42)
14. What c/side offers (00:29:32)
15. Jerod avenges Nick (00:33:57)
16. Does c/side inject scripts? (00:38:22)
17. What the browsers could do (00:39:49)
18. Consider it cut (00:44:43)
19. Doing better server-side (00:45:31)
20. Ghoulish overkill (00:48:24)
21. Closing time (00:51:16)
22. Next up on the pod (00:51:49)
2106 episodes
All episodes
×
Welcome to Player FM!
Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.
Similar to Changelog Master Feed
Software's best weekly news brief, deep technical interviews & talk show.
…
continue reading
On The Bike Shed, hosts Joël Quenneville and Stephanie Minn discuss development experiences and challenges at thoughtbot with Ruby, Rails, JavaScript, and whatever else is drawing their attention, admiration, or ire this week.
…
continue reading
Three nerds discussing tech, Apple, programming, and loosely related matters.
…
continue reading
The world of computer programming is vast in scope. There are literally thousands of topics to cover and no one person could ever reach them all. One of the goals of the Coding Blocks podcast is to introduce a number of these topics to the audience so they can learn during their commute or while cutting the grass. We will cover topics such as best programming practices, design patterns, coding for performance, object oriented coding, database design and implementation, tips, tricks and a who ...
…
continue reading
Get ready for a weekly dose of all things Enterprise Software and Cloud Computing! Join us as we dive into topics including Kubernetes, DevOps, Serverless, Security and Coding. Plus, we’ll keep you entertained with plenty of off-topic banter and nonsense. Don’t worry if you miss the latest industry conference - we’ve got you covered with recaps of all the latest news from AWS, Microsoft Azure, Google Cloud Platform (GCP) and the Cloud Native Computing Foundation (CNCF).
…
continue reading
An open show powered by community LINUX Unplugged takes the best attributes of open collaboration and turns it into a weekly show about Linux.
…
continue reading
A podcast about web design and development.
…
continue reading
1
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
Jerry Bell and Andrew Kalat
Defensive Security is a weekly information security podcast which reviews recent high profile cyber security breaches, data breaches, malware infections and intrusions to identify lessons that we can learn and apply to the organizations we protect.
…
continue reading
Material is a weekly discussion about the Google and Android universe. Your intrepid hosts try to answer the question, “What holds up the digital world?” The answer, so far, is that it’s Google all the way down. Hosted by Andy Ihnatko and Florence Ion.
…
continue reading
Technical interviews about software topics.
…
continue reading
Player FM - Podcast App
Go offline with the Player FM app!
Go offline with the Player FM app!
