hiroppy's site

Zig 0.16.0 release notes: "Juicy Main"

Zig has really good release notes - comprehensive, detailed, and with relevant usage examples for each of the new features. Of particular note in the newly released Zig 0.16.0 is …

simonwillison-blog2026-04-15

tool

datasette PR #2689: Replace token-based CSRF with Sec-Fetch-Site header protection

Datasette has long protected against CSRF attacks using CSRF tokens, implemented using my asgi-csrf Python library. These are something of a pain to work with - you need to scatter …

simonwillison-blog2026-04-14

apisecuritytool

Feross on the 10 Minutes or Less Podcast: Nobody Reads the Code

Socket CEO Feross Aboukhadijeh joins 10 Minutes or Less, a podcast by Ali Rohde, to discuss the recent surge in open source supply chain attacks.

Socket2026-04-14

apisecuritytool

How to Roll Out Application Layer Security Without Breaking Production

Deploying application layer security in production can feel risky. Blocking rules, rate limits, and bot protections directly change how your system handles traffic and a misconfigured threshold does not just log an error, it can prevent real users from logging in, signing up, or completing a purchase. That is why

Arcjet Blog2026-04-14

apisecuritytool

Period

Categories

Sources (27)

All Sources (27)

2ality

Anthony Fu

Arcjet Blog

Atriiy

azukiazusa のテックブログ2

Builder.io Blog

CSS-Tricks

e18e Blog

efcl

Jake Archibald

Joyee Cheung

JSer.info

Jxck

leaysgur's Blog

LogRocket Dev

Mark Erikson's Blog

mizdra.net

NodeSource Blog

Overreacted

Socket

tinyclouds

TkDodo

Total TypeScript

Zenn akfm_sato

Zenn Cybozu Frontend

Zenn mizchi

Zenn uhyo

Zig 0.16.0 release notes: "Juicy Main"

datasette PR #2689: Replace token-based CSRF with Sec-Fetch-Site header protection

Feross on the 10 Minutes or Less Podcast: Nobody Reads the Code

How to Roll Out Application Layer Security Without Breaking Production

Article Preview