tmr
I only want to allow a.com to load script in b.com, but I don’t want to allow c.com to load script in b.com, what should I do in scriptsafe
**Describe the bug** 内存模式下没有PrefixScan的功能,似乎也少了其他的一些功能 **To Reproduce** Steps to reproduce the behavior(Be specific!): ``` opts := inmemory.DefaultOptions db, err := inmemory.Open(opts) db.PrefixScan() ``` **Expected behavior** 内存模式下有完整功能 ps: 文档也没写内存模式有什么功能缺失 **What actually happens**...
Brim listens on port 9867 by default, without authentication, without checking host, you can use dns rebinding attack to obtain data in brim ## Attack example The victim opens brim...
### Description HeadlessChrome ua parse error ### Steps to reproduce `Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/97.0.4691.0 Safari/537.36`  - **Expected behavior**: browser.name is HeadlessChrome - **Actual behavior**:...
Use the code from the readme Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/97.0.4691.0 Safari/537.36 Name: Safari v 537.36 OS: Linux v x86_64 Device: (Desktop)
https://developer.mozilla.org/en-US/docs/Web/API/Navigator/userAgentData userAgentData only exists in https websites. If a chrome ua is set using UserAgent-Switcher, userAgentData still exists when visiting http websites  https://github.com/ray-lothian/UserAgent-Switcher/blob/18b2fbadb775d6c9da66ee6a43fb59f81cd30339/extension/firefox/common.js#L265-L272
无法保存设置
目前选择代码块复制还是得手动选择,不方便 一开始以为ctrl+a能选择整个代码块,发现是选择整个文档 可以参考为知笔记markdown,代码块右上角有自动换行和复制选项
[Original title: javascript function variable propagation and line matching] https://semgrep.dev/s/7Qxk ```yaml rules: - id: bad-call patterns: - pattern-either: - pattern: bad(...) message: Found call to 'bad' languages: [js] severity: WARNING...
I tried to parse this file https://pkg.go.dev/static/frontend/unit/main/main.js, but failed, here is the snippet of the error ```go import ( "fmt" goja "github.com/dop251/goja/parser" ) func main() { b := ` fetch("/play/compile",...