Tag: Best Practices

Web application security is a big topic, and two terms you might hear often are XSS and CSRF. They both point to ways websites can be attacked, even though they work differently. To break it down simply: XSS stands for Cross-site scripting. It’s like someone sneaking a message into a conversation. CSRF, or Cross-site request forgery, is like someone pretending to be you to trick others. Though they have different ways of causing trouble, they do...

As developers, ensuring the security of our applications is crucial. Insecure Direct Object References (IDOR) are common security vulnerabilities that occur when a system’s internal implementation is exposed to users, allowing them to manipulate references to access unauthorized data. GraphQL, a powerful data query and manipulation language for APIs, is not exempt from this vulnerability. In this blog post, we will dive in detail into what IDOR vulnerabilities are and why they pose...

Whether or not to disable introspection has been a common debate among GraphQL developers since its inception. In this blog post, we will explain why completely disabling introspection is not necessary and why it can be counterproductive. I can't really find any good reasons for blocking/removing #GraphQL ...

tl;dr we scanned 6056+ public APIs on the internet with our in-house feedback driven exploration tech and ranked them using security, performance, reliability, and design criteria. We decided to analyze the resulting data and produce a full featured report: The State of Public APIs 2023 Why build this report? ...

Returning errors in GraphQL is a challenging task, and we tried a lot of different approaches over time. Keep reading to know what we’ve learned along the way. ...

When we talk about templates in WordPress we are normally referring to page template files in the theme. However, there are plugins that use template files to display content, and… Read more The post WordPress Plugin Development Best Practices: Template Files appeared first on Delicious Brains. ...

Before I career jumped into development, I did a bunch of motion graphics work in After Effects. But even with that background, I still found animating on the web pretty baffling. Video graphics are designed within a specific ratio and … Responsive Animations for Every Screen Size and Device originally published on CSS-Tricks, which is part of the DigitalOcean family. You should get the newsletter. ...

Introduction As organizations rapidly move towards cloud adoption, they are also looking at microservices and an agile way of development, deployment, and testing. With such rapid adoption, large organizations are facing many challenges. In large… The post How to Automate Microservices on AWS appeared first on Education Ecosystem Blog. ...

Let’s acknowledge that developing for WordPress is weird right now. Whether you’re new to WordPress or have worked with it for eons, the introduction of “Full-Site Editing” (FSE) features, including the Block Editor (WordPress 5.0) and the Site Editor (WordPress … Getting Started With WordPress Block Development originally published on CSS-Tricks, which is part of the DigitalOcean family. You should get the newsletter. ...

AWS Lambda functions can time out for a variety of reasons. Best practices for troubleshooting. The post How to resolve the AWS Lambda timeout error appeared first on Education Ecosystem Blog. ...