react-server
react-server copied to clipboard
redfin
:rocket: Blazing fast page load and seamless navigation.
@egid - Can we make the source-code blocks have horizontal scroll instead of text wrapping? Hard to read source code when it wraps. https://react-server.io/source/Markdown.html 
I've been maintaining notes on how we are doing deployment in a document. This needs to be transferred to a markdown file in the repository.
Nice to have on the website: ``` CHANGELOG.md CODE_OF_CONDUCT.md CONTRIBUTING.md MAINTAINING.md README.md ``` What's the right nav structure for these?
Maybe useful to put these on the site: ``` packages/babel-plugin-react-server/README.md packages/babel-preset-react-server/README.md packages/generator-react-server/README.md packages/react-server-cli/README.md packages/react-server-core-middleware/README.md packages/react-server-data-bundle-cache/README.md packages/react-server-examples/README.md packages/react-server-gulp-module-tagger/README.md packages/react-server-integration-tests/README.md packages/react-server-module-tagger/README.md packages/react-server-test-pages/README.md packages/react-server-website/README.md packages/react-server/README.md ``` A new section? A sub-section of `docs`?
Re-enable XSS protection, even if the user has enabled it https://www.owasp.org/index.php/XSS_(Cross_Site_Scripting)_Prevention_Cheat_Sheet#Bonus_Rule_.234:_Use_the_X-XSS-Protection_Response_Header Identified by [observatory](https://observatory.mozilla.org/analyze.html?host=react-server.io)
Help prevent xss attacks https://hacks.mozilla.org/2016/02/implementing-content-security-policy/ Identified by [observatory](https://observatory.mozilla.org/analyze.html?host=react-server.io)
Reproduction: 1. In newly opened browser or incognito window go to https://react-server.io/. 2. Scroll to bottom of page and click the Slack badge. Bug: the badge does not appear and...
http is for chumps; only https https://wiki.mozilla.org/Security/Guidelines/Web_Security#HTTP_Strict_Transport_Security Identified by [Observatory](https://observatory.mozilla.org/analyze.html?host=react-server.io)
It won't be everywhere, since Frameback uses an iFrame, but where possible we should prevent clickjacking with the X-Frame-Options header https://wiki.mozilla.org/Security/Guidelines/Web_Security#X-Frame-Options Identified by [Observatory](https://observatory.mozilla.org/analyze.html?host=react-server.io)