PCMag

Wikipedia Forced to Lock Down Edits Over JavaScript That Could Delete Pages

The nonprofit that oversees Wikipedia briefly enforced a 'read-only' mode on Thursday morning as users spotted code designed to delete articles and place Russian text in the edit summary.
InfoWorld

Why local-first matters for JavaScript

Every developer should be paying attention to the local-first architecture movement and what it means for JavaScript. Here’s ...

Wikipedia hit by self-propagating JavaScript worm that vandalized pages

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.

Loading Content With JavaScript Does Not Make It Harder For Google Search

Google has removed a whole section from its JavaScript SEO documentation because it was outdated and Google says loading content with JavaScript does not make it hard for Google Search.

Google removes accessibility section from JavaScript SEO section

Google has removed the “design for accessibility” section from within the Understand the JavaScript SEO basics documentation.

Chrome Extension Hijacked to Deliver Malware, Steal Crypto Wallets

A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.
InfoWorld

Angular releases patches for SSR security issues

Server-side rendering vulnerabilities could allow attackers to steal authorization headers or perpetrate phishing and SEO hacking.

Principled Technologies and the BenchmarkXPRT Development Community release WebXPRT 5

WebXPRT 5, a free online performance evaluation tool, provides objective information about how well web-connected ...