ZDNet

Google working on new Chrome security feature to 'obliterate DOM XSS'

Google has created a new browser API that will help Chrome fight certain types of cross-site scripting (XSS) vulnerabilities, adding another level of protection at the browser level to keep users safe ...
Forbes

The Document Object Model Is Dead: Stop Testing Like It’s 2010

A common misconception in automated software testing is that the document object model (DOM) is still the best way to interact with a web application. But this is less helpful when most front ends are ...
Computer Weekly

Vulnerabilities in JavaScript: Secure coding insights and tips

The perceptions that critical operations are performed on the server side and that all data is stored there are incorrect. What many browsers do today involves reaching out over an unencrypted ...