You are @ 10K Apart - Charlie
This was a website competition where submissions had to deliver a usable experience in under 10KB of transferred content. Some submissions are better than others but I thought it was a good competition idea.
Why you shouldn’t use ENV variables for secret data - Charlie
Bit of a clickbait title… a short write up commenting on some of the problems that can arise from storing secrets in environment variables. There’s also a (docker specific) alternative explained that allows secrets to be encrypted at rest.
Using your device’s light sensor to steal browser data - Abraao M
These researchers argue against a proposal to use sensor data without asking for user permission by showing it’s possible to exfiltrate browser data (such as account recovery QR codes) by flashing the screen. It’s a fairly slow to exploit in a real scenario but shows the dangers of exposing sensitive API’s.
Track of the Week - Murray S
You know who is brilliant? It’s Björk. It’s always Björk. I can’t think of a situation that wouldn’t be improved by a Björk soundtrack. What I’m saying is that you should probably be listening to more Björk. In fact, why not listen to some now: