PSA: CORS allow origin * considered harmful in development.
CORS allow origin * is a security hole, even in development.
by Alex Baldwin
Blog: Author
Alex Baldwin
Chaos Order
Randomizing Queries to Uncover Order-Dependency
by Alex Baldwin
Your Text Editor Plugins Belong in a Lock File
by Alex Baldwin
Great Scott! Timing Attack Demo for the Everyday Webdev
by Alex Baldwin