Tag
Notes tagged “xss”
Every note filed under xss, newest first.
A filtered view of the notes.
2026
- Trust No Script
Why a strict Content Security Policy is one of the hardest headers to deploy — and how to read a real one with Google's CSP Evaluator.