Today I got reminded that 14 years ago I asked Mozilla to disable dynamic code execution in browser extensions: 13 years ago this request was rejected because “too late to fix.” Then 10 years ago Chrome devs did it by means of CSP. 🤷‍♂️

Sign in to participate in the conversation
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.