Because using htmx is asking to get defaced via XSS, or worse. Security is an af... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		cluckindan 46 days ago \| parent \| context \| favorite \| on: XMLUI Because using htmx is asking to get defaced via XSS, or worse. Security is an afterthought for the project, which is evident from the placement of the related documentation.

recursivedoubts 45 days ago | [–]

security rules for htmx are no different than any other hypermedia approach: you need to escape all user content

https://htmx.org/essays/web-security-basics-with-htmx/

rockwotj 46 days ago | [–]

How is this better?

cluckindan 46 days ago | [–]

It probably isn’t.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact