silverwizardOct 21, 2024

One of the things that is destroying the web is WASM and JavaScript.

This isn't really even a joke - it's literal.

By having all these tools to make a web browser have unfettered access to the system, it becomes unsafe to allow users to generate arbitrary code. We can't have another MySpace or NeoPets User Lookup because we can't allow users to write their own HTML, because that's *dangerous*.

Show threadvalkyrie_pilotOct 21, 2024
@silverwizard is it safe to let users generate even arbitrary HTML? Was it ever safe to do so? Or did these sites just not care?
Show threadsilverwizardOct 22, 2024
@valk why would styling be unsafe?
Show threadliftsOct 22, 2024
@silverwizard @valk It’s rare, but keyloggers and other funny things have happened. (https://css-tricks.com/css-security-vulnerabilities/)
CSS Security Vulnerabilities | CSS-Tricks

Don't read that headline and get worried. I don't think CSS is a particularly dangerous security concern and, for the most part, I don't think you need to

CSS-Tricks
Show threadsilverwizard
@lifts @valk right, CSS has grown to madness
Oct 22, 2024 at 2:26amWeb