Roberto Clapis
Roberto Clapis
In my case I had a self updating cache that was scheduled to perform some operations every 15' and then check for the time received from the ticker. If an...
To be fair assigning a string literal to template.JS and template.CSS might be acceptable. This is not true for template.HTML and it is definitely not true for any string that...
Maybe it would be better to fork the theme under xsleaks/ and just change the submodule here? I know I suggested smth different in the past but this commit completely...
Is there a way to protect single handlers with a specific configuration?
1) Have some interceptors on single handlers 2) Have a way to express that on some specific handlers a group of interceptors should behave differently (e.g. where CORS is enabled...
SGTM, should I provide some sample implementations?
Routers might bring some security issues with them, this one might be harder than we initially envisioned.
Vary should probably be treated in a append-only way, and we might want to even consider adding this to the framework rather than try to have a plugin that is...
What is the alternative? Add a generic way to support append-only headers?
I would also add that the `Filename` field of the multipart `FileHeader` type *might* be a relative directory path or a fully qualified path unlike the name seems to suggest....