Tag: security

All the articles with the tag "security".

• Stop Using innerHTML: The New Firefox Feature That Kills XSS

  26 Feb, 2026

  • 5 min read • webdev

  Firefox 148 just shipped the new Sanitizer API with setHTML(). Here's why you should stop using innerHTML today.

• Chasing a Transitive Dependency Vulnerability

  19 Feb, 2026

  • 3 min read • security

  How a vulnerability in fast-xml-parser affected my blog through @astrojs/rss, and why transitive dependencies are quietly terrifying.