6-day longest streak
-
vimroom ▣
Simulating a vaguely WriteRoom-like environment in Vim.
VimL ★ 333 9y agoExplain → -
http-state-tokens
Incrementally better HTTP state management.
HTML ★ 298 3y agoExplain → -
privacy-budget ▣
No description.
★ 209 2y agoExplain → -
nginx-static-etags ▣
Nginx doesn't generate etags for static content. I'd like it to. Let's see if I can remember some C from college.
C ★ 76 17y agoExplain → -
cookies-over-http-bad ▣
Archived proposal from 2018. Perhaps the approach in mikewest/scheming-cookies will be more successful!
★ 51 6y agoExplain → -
tc39-proposal-literals ▣
Literals could be different than non-literals.
★ 32 8y agoExplain → -
jslint-utils ▣
Wrapper scripts for running JSLint locally, and for generating test reports for Hudson
JavaScript ★ 32 15y agoExplain → -
credentialmanagement ▣
Credential Management
CSS ★ 29 11y agoExplain → -
cookie-incrementalism
Incrementally better cookies.
HTML ★ 22 4y agoExplain → -
securer-contexts ▣
Secure Contexts, but with _more_ secureness!
★ 20 2y agoExplain → -
content-security-policy
Personal draft of the Web Application Security WG's Content Security Policy specification.
JavaScript ★ 19 3y agoExplain → -
baseline-header
What if developers could opt-into better default behaviors en masse, forcing them to pick and choose the legacy risks they want to enable.
★ 19 3y agoExplain → -
deprecating-document-domain
`document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?
★ 17 2y agoExplain → -
palmerized-chrome
https://noncombatant.org/2014/03/11/privacy-and-security-settings-in-chrome/
JavaScript ★ 17 10y agoExplain → -
scheming-cookies ▣
Cookies should take scheme into account, just like every other storage mechanism on the web.
★ 16 6y agoExplain → -
sanitizer-playground
A demonstration of the HTML Sanitizer API.
HTML ★ 14 4mo agoExplain → -
spec-questionnaire
No description.
HTML ★ 14 11y agoExplain → -
static_gettext ▣
`gettext` wrapper, enabling localization of static documents and websites.
Python ★ 13 5y agoExplain → -
homedir ⑂
Public home directory files
PHP ★ 12 1y agoExplain → -
strict-csp-for-everyone
This is both a terrible and wonderful idea.
★ 12 6y agoExplain → -
mcw_templates ▣
A Textpattern plugin enabling import and export of pages, forms, and CSS rules. Unmaintained, released under MIT license.
PHP ★ 11 17y agoExplain → -
deprecate-it
Deprecate it.
HTML ★ 10 3y agoExplain → -
datarequestor ▣
Pompously described (in _2005_) as "Ajax without the confusing API." Unmaintained, released under MIT license.
JavaScript ★ 8 17y agoExplain → -
Instapaper-Chrome-Extension ▣
A minimal "Send to Instapaper" Chrome extension.
JavaScript ★ 8 14y agoExplain → -
vCard ▣
A vCard website. Doesn't everyone have one of these?
Python ★ 7 15y agoExplain → -
mgc
Mike Generated Content; even better than Web 2.0.
HTML ★ 7 7y agoExplain → -
consider-deploying-corp
Consider deploying Cross-Origin Resource Policy.
HTML ★ 6 5y agoExplain → -
mitigation-supply
Mitigations. Supplied.
HTML ★ 6 2y agoExplain → -
embedding-requires-opt-in
Embedding a document (via `<iframe>`, etc) should require explicit opt-in from the embedee.
★ 5 5y agoExplain → -
presentations ▣
Various bits and pieces of presentations
JavaScript ★ 5 15y agoExplain → -
strict-navigation-security
What if HSTS only applied to top-level navigations?
★ 5 6y agoExplain → -
origin-api ▣
An `Origin` object might be nice to have.
Bikeshed ★ 4 6mo agoExplain → -
mikewest.org
No description.
HTML ★ 4 3y agoExplain → -
appengine-thingsyoushouldread ▣
Things I think you should read.
Python ★ 4 17y agoExplain → -
coop-by-default
Wouldn't it be nice if `Cross-Origin-Opener-Policy` was applied by default?
★ 4 5y agoExplain → -
topdown ▣
I'm writing (read: porting) a top-down JavaScript parser to teach myself Python. Weird, eh?
Python ★ 4 17y agoExplain → -
css-parser ▣
A toy css parser, written to teach myself C.
C ★ 4 16y agoExplain → -
fallow ▣
A "teaching myself Ruby and Git by writing a Rack-based blog" project
Ruby ★ 4 17y agoExplain → -
resource-policy
Wouldn't it be nice if servers could assert more granular things about how a resource should be used?
★ 4 6y agoExplain → -
internetdrafts
No description.
HTML ★ 4 8y agoExplain → -
contentsecuritypolicy.info
contentsecuritypolicy.info
JavaScript ★ 4 13y agoExplain → -
mikewest.github.com
projects.mikewest.org
HTML ★ 3 4y agoExplain → -
privacy-policy-discovery
Policy documents should be discoverable.
HTML ★ 3 2y agoExplain → -
Accessible-Tabs ⑂
jQuery Plugin that generates a Tab Navigation from Markup that makes sense without Javascript. The generated Tabs are the only ones out there that work for Screenreader users without support for WAI ARIA.
JavaScript ★ 3 17y agoExplain → -
vim-markdown ▣
Vim Markdown runtime files that WON'T leave you sterile
VimL ★ 3 16y agoExplain → -
consolemessages
Maybe a project?
★ 3 13y agoExplain → -
hasacdn.net
Nginx configuration for *.hasacdn.net
★ 3 14y agoExplain → -
chrome-boilerplate ⑂
A boilerplate for Chrome app, extension, and theme development.
JavaScript ★ 3 14y agoExplain → -
placid
A manifest v3 (and modified) version of Palmerized Chrome.
HTML ★ 2 1mo agoExplain → -
writeonly
`<input writeonly>`
HTML ★ 2 6y agoExplain → -
categorizing-capabilities
Apps fall into categories. Categories are bound to capabilities.
★ 2 5y agoExplain → -
purposeful-permissions
No description.
★ 2 1y agoExplain → -
injection-mitigated
`[InjectionMitigated]` WebIDL Attribute
HTML ★ 2 1y agoExplain → -
artur-yes
No description.
HTML ★ 2 7y agoExplain → -
algorithms101 ▣
Working through Intro to Algorithms. In JavaScript.
JavaScript ★ 2 16y agoExplain → -
chromium-dashboard ▣
We got a big TV in the office. I should fill it with something.
JavaScript ★ 2 15y agoExplain → -
frontend-build-scripts ▣
starting on a build script that reads dependencies from the files, rather than hard-coding them...
Python ★ 2 16y agoExplain → -
PyPlaceholder ▣
Placeholder images. Generated via the magic of PyPNG!
Python ★ 2 15y agoExplain → -
flask-pyplaceholder ▣
PyPlaceholder, hosted via Flask.
Python ★ 2 15y agoExplain → -
sample-i18n ▣
Sample AppEngine i18n Code
Python ★ 2 15y agoExplain → -
perfecttime ▣
JavaScript-based local-timezone based string replacement. Unmaintained, released under MIT license.
JavaScript ★ 2 17y agoExplain → -
pysvnhooks ▣
Some Python code to implement subversion hooks.
Python ★ 2 16y agoExplain → -
HTMLOutliner ▣
No description.
Python ★ 2 17y agoExplain → -
forum_lddebate_org ▣
The phpBB-based forum.lddebate.org
PHP ★ 2 17y agoExplain → -
isolated.website
It's an isolated website. Maybe yours should follow suit?
HTML ★ 2 5y agoExplain → -
philosophic_li
Code for philosophic.li
★ 2 17y agoExplain → -
http-is-https
Post-`forbes.com`, I think we can say that "http" => "https".
HTML ★ 2 9y agoExplain → -
unnamedproject
I need a name.
JavaScript ★ 2 13y agoExplain → -
w15y.com
The beginnings of a project.
JavaScript ★ 2 14y agoExplain → -
webappsec-templates
Demo of templates proposed for WebAppSec.
★ 1 6mo agoExplain → -
rfc9421-sri-profile
A profile of HTTP Message Signatures appropriate for integrity/provenance validation.
Makefile ★ 1 16h agoExplain → -
scratchpad
No description.
HTML ★ 1 7mo agoExplain → -
inline-integrity
Inline integrity.
Bikeshed ★ 1 8mo agoExplain → -
a-priori-resource-assertions
Wouldn't it be nice if we could know things about a server's response _before_ we receive it?
★ 1 9mo agoExplain → -
incentivize-origin-checks
Perhaps we can help developers prioritize origin checks in `MessageEvent` handlers.
★ 1 11mo agoExplain → -
progress
A progress bar. Nothing interesting.
HTML ★ 1 2y agoExplain → -
eightyize ▣
80 columns.
Python ★ 1 15y agoExplain → -
mcw_ma_gnolia ▣
A very, very unmaintained Textpattern plugin for a potentially dead site.
★ 1 17y agoExplain → -
nginx_501 ▣
A default nginx site that returns nothing but 501.
★ 1 16y agoExplain → -
hillegass-exercises ▣
Working through "Cocoa Programming for Mac OS X". Slowly.
Objective-C ★ 1 16y agoExplain → -
cookie-samesite-firstparty
No description.
HTML ★ 1 7y agoExplain → -
coop
WIP COOP.
HTML ★ 1 7y agoExplain → -
html5-boilerplate ⑂
A professional front-end template for building fast, robust, and adaptable web apps or sites.
JavaScript ★ 1 13y agoExplain → -
WebFundamentals ⑂
Best practices for modern web development
HTML ★ 1 11y agoExplain → -
upgrade-demo
No description.
HTML ★ 1 11y agoExplain → -
server-configs ⑂
Webserver configuration templates for various platforms. Goes well with HTML5 Boilerplate.
JavaScript ★ 1 13y agoExplain → -
clackity
clackity.io
JavaScript ★ 1 10y agoExplain → -
texts_lddebate_org
Political and ethical texts relevant to LD debate; crafted in the image of http://federali.st/.
Python ★ 1 17y agoExplain → -
doodlings
Everyone needs a public ~/tmp directory.
Python ★ 1 14y agoExplain → -
Modernizr ⑂
Feature detect HTML5 and CSS3 features, with handy css and javascript hooks so you can progressively enhance to your heart's content.
JavaScript ★ 1 14y agoExplain → -
extended-embed-extension ⑂
Extended Embed for Google Plus Chome Extension
JavaScript ★ 1 14y agoExplain → -
html ⑂
HTML Standard
HTML ★ 0 3mo agoExplain → -
ServiceWorker ⑂
Service Workers
Bikeshed ★ 0 3mo agoExplain → -
install-element ⑂
An `<install>` element might be nice.
★ 0 4mo agoExplain → -
infra ⑂
Infra Standard
★ 0 7mo agoExplain → -
PEPC ⑂
Explainer for the PEPC feature
★ 0 7mo agoExplain → -
webappsec-dbsc ⑂
Device Bound Session Credentials: A Protocol for Protecting From Cookie Theft
★ 0 10mo agoExplain → -
sha2-it
No description.
HTML ★ 0 1y agoExplain → -
observable ⑂
Observable API proposal
★ 0 1y agoExplain → -
draft-pardue-http-identity-digest ⑂
A field to send the unencoded digest of HTTP things
★ 0 1y agoExplain → -
respec ⑂
Specification Edition Support Tool
JavaScript ★ 0 12y agoExplain → -
content ⑂
The content behind MDN Web Docs
★ 0 2y agoExplain → -
summernote ⑂
Super simple WYSIWYG editor
★ 0 2y agoExplain → -
webappsec-mixed-content ⑂ ▣
WebAppSec Mixed Content
HTML ★ 0 6y agoExplain → -
webidl ⑂
Web IDL
★ 0 5y agoExplain → -
timeliner ⑂
All your digital life on a single timeline, stored locally
★ 0 5y agoExplain → -
notes ⑂
TC39 meeting notes
★ 0 5y agoExplain → -
change-password-url ⑂
A Well-Known URL for Changing Passwords
★ 0 6y agoExplain → -
sanitizer ⑂
Proposal for a browser-based sanitizer API
★ 0 6y agoExplain → -
bug-test-scratchpad
No description.
HTML ★ 0 7y agoExplain → -
web-platform-tests ⑂
Test Suites for Web Platform specifications
HTML ★ 0 11y agoExplain → -
kant.fyi
https://kant.fyi
CSS ★ 0 8y agoExplain → -
clackity-io.github.io
No description.
CSS ★ 0 10y agoExplain → -
chrome-security-owp-status
Chrome Security OWP Status Dashboard
HTML ★ 0 8y agoExplain → -
doodling
No description.
★ 0 8y agoExplain → -
resume
No description.
HTML ★ 0 9y agoExplain → -
mkw.st
https://mkw.st/
HTML ★ 0 9y agoExplain → -
rfc6265-biz
No description.
JavaScript ★ 0 10y agoExplain → -
change-password
No description.
HTML ★ 0 10y agoExplain → -
csswg-drafts ⑂
Mirror of CSS WG Editor Draft repository - https://hg.csswg.org/drafts
HTML ★ 0 10y agoExplain → -
xref ⑂
Cross-references database for standards
Python ★ 0 10y agoExplain → -
bikeshed ⑂
A preprocessor for the CSSWG that converts source files into actual specs.
Python ★ 0 9y agoExplain → -
wg-materials ⑂
HTTP Working Group Materials
HTML ★ 0 10y agoExplain → -
update-rfc6265
No description.
★ 0 10y agoExplain → -
error-reporting
No description.
HTML ★ 0 10y agoExplain → -
csp-embedded-enforcement
No description.
HTML ★ 0 10y agoExplain → -
csp3
No description.
HTML ★ 0 10y agoExplain → -
test-sw
No description.
HTML ★ 0 11y agoExplain → -
websec
No description.
★ 0 11y agoExplain → -
sandbox-demo
No description.
HTML ★ 0 11y agoExplain → -
list ⑂
The Public Suffix List
Python ★ 0 11y agoExplain → -
samples ⑂
A repo containing samples tied to new functionality in each release of Google Chrome.
HTML ★ 0 11y agoExplain → -
web-https ⑂
Transitioning the Web to HTTPS
HTML ★ 0 11y agoExplain → -
webappsec ⑂
No description.
HTML ★ 0 10y agoExplain → -
immanuelkant.de
https://immanuelkant.de/
CSS ★ 0 11y agoExplain → -
mixedcontenttests
Mixed Content Tests
★ 0 12y agoExplain → -
capability-urls ⑂
Work on good practices for the use of capability URLs
★ 0 12y agoExplain → -
specref ⑂
A list of spec references and related API.
JavaScript ★ 0 12y agoExplain → -
evalbox
Toy application, demonstrating sandboxing.
★ 0 13y agoExplain → -
Blink ⑂
An unofficial mirror for Chromium's Blink, with experimental branches.
C++ ★ 0 13y agoExplain → -
csp-testing ⑂
CSP testing
Ruby ★ 0 14y agoExplain → -
webkit ⑂
Unofficial mirror of the WebKit SVN repository
C++ ★ 0 13y agoExplain → -
http-client-hints ⑂
draft RFC to enable cache-friendly content adaption
★ 0 13y agoExplain → -
cspparser.js
Content Security Policy parser.
JavaScript ★ 0 13y agoExplain → -
caniuse ⑂
Raw browser/feature support data from caniuse.com
★ 0 13y agoExplain →
No repos match these filters.