Hacker News new | past | comments | ask | show | jobs | submit login

How does the XSS Auditor work?



I can't think of a reliable way to filter out "malicious" code without also having many false positives.

Without having seen their solution, I feel that the browser is the wrong place to fix this kind of problem anyway. Much like PHP tried to prevent SQL Injection Attacks with "Magic Quotes" - we all know how that went.


This is not about the browser "fixing" the issue, but rather helping developers find the issues in the first place.




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: