-
:cry:
-
**Vulnerabilities**
DepShield reports that this application's usage of [lodash.sortby:4.7.0](https://ossindex.sonatype.org/component/pkg:npm/lodash.sortby@4.7.0) results in the following vulnerabilit…
-
**Vulnerabilities**
DepShield reports that this application's usage of [lodash.sortby:4.7.0](https://ossindex.sonatype.org/component/pkg:npm/lodash.sortby@4.7.0) results in the following vulnerabilit…
-
**Vulnerabilities**
DepShield reports that this application's usage of [lodash.sortby:4.7.0](https://ossindex.sonatype.org/component/pkg:npm/lodash.sortby@4.7.0) results in the following vulnerabilit…
-
As far as I can tell, the test has the following structure (focusing on the HTTP header part for now, and just the fetch case):
1. Load a URL that sends back a `Refresh: 0` header.
2. When the loa…
-
This is mentioned at several places, but AFAIK the only reference is on the IDL:
https://heycam.github.io/webidl/#SecureContext
which in turn links to
https://html.spec.whatwg.org/multipage/…
-
Add the attribute `searchParams` on [`Location`](https://html.spec.whatwg.org/multipage/history.html#the-location-interface) interface which returns a [`URLSearchParams`](https://url.spec.whatwg.org/#…
-
# html5 new features
https://gist.github.com/xgqfrms-GitHub/1ba83e991eb358338151f54e5805ac5d
## `HashChangeEvent()`
https://developer.mozilla.org/zh-CN/docs/Web/API/Window/onhashchange
htt…
-
Something like `Access-Control-Allow-Visible-Redirect: *`
This would make a redirect responses visible. If the request was cross-origin, it would still have to pass existing CORS checks, and would …
-
The HTML specification has two methods for converting between a unicode string to a base64-encoded representation of it, and vice versa.
https://html.spec.whatwg.org/multipage/webappapis.html#dom-win…