Exploiting (and protecting against) injection attacks, duplication DOS, and circular query attacks in GraphQL.
Local-first security, a low-latency gRPC API in every cloud region, persistent HTTP/2 connections, and smart caching.
What are race condition attacks? Exploring examples and mitigations.
Support for Next.js 15 with performance improvements and full support for server actions.
But usually it's good enough to stop 80% of the worst actors with only 20% of the effort of doing it yourself.
Discover the hidden risks of using trivial packages in development. Learn how small, seemingly insignificant dependencies can lead to significant security vulnerabilities.
Get the full posts by email every week.
