Dashboard
News
Videos
Code
Resources

SYS::OKUTC --:--:--BUILD c0d3x@v2.14.2

UPLINK::HN/GH/LOBSTERS/DEV● LIVE

Dashboard
News
Videos
Code
Resources

> loading_

c0d3x.org · proprietary · v2.14.2

status privacy changelogBUILT WITH NEXT 16 · REACT 19 · TAILWIND 4// stay curious

// feed

News.aggregator

2 results · page 1/1

2 results

HN GH RD DEV LOB ARX PH TLD clear all ✕

// tags· 2 selected

#1000 #100daysofsolana #100daysofsolona #2026 #a11y #accountability #achievement #activator #actors #adaptive #adopting

DEVMay 4, 2026 · 7h ago

A superscript-1 walks past every Go SSRF guard

TL;DR. golang.org/x/net/idna.Lookup.ToASCII runs UTS-46 NFKC mapping 0-9. A pre-IDNA net.ParseIP check rejects the NO_PROXY lists, TLS-SNI routers, and cookie-domain validators that TrimRight + ParseAddr golang.org/x/net/http/httpproxy, the canonical safe pattern, and two I ran into this one while writing a Go HTTP client for a private project. I idna.Lookup.ToASCII canonicalising the host The sha

#agenticstandards

#aiassisteddevelopment

#aidiagnostictrust

#angular-roadmap

#architecturecloud

#arquitecturasoftware

#artificial-intelligence

#autoregressivegeneration

#avoidlossescrypto

#backend-roadmap

#backenddevelopment

#bearmarketcrypto

#bestcryptoapi2026

#blockchain-roadmap

#browserextension

#browserextensions

#careerdevelopment

#childrensliterature

#chromeextension

#cleanarchitecture

#cloudcomputing

#cloudformation

#cognitiveinfrastructure

#commitmessages

#computer-science

#computerscience

#confidentialcomputing

#continuousbatching

#crlfauthenticationbypass

#cross-platform

#cryptocurrency

#cryptoriskmanagement

#cryptotradingbotapi

#customcssfunctions

#dataengineering

#datastructures

#datavisualization

#deep-neural-networks

#desenvolvimento

#devcyclechallenge

#developercareer

#developerproductivity

#developertools

#devsecopsuygulamaları

#digitalsovereigntyai

#digitalthinking

#disasterrecovery

#distributedsystems

#dynamicprogramming

#emailmarketing

#embeddedsystems

#endüstriyelsistemgüvenliği

#engineeringleadership

#engineeringmanagement

#eventsinyourcity

#firstvisittojapan

#gittabanlıaltyapı

#googlefordeveloper

#healthcareaiethics

#highavailability

#humanaicollaboration

#humanintheloop

#incidentmanagement

#infrastructure

#javascriptlibraries

#jetpackcompose

#juniordevcrisis

#learningtocode

#machine-learning

#machinelearning

#maintainability

#midnightchallenge

#multiagentsystems

#oh-my-zsh-plugin

#parallelrequests

#patientphysicianparadox

#platformengineering

#premadefivemserver

#prematurelockin

#proceduralgeneration

#productengineering

#productivitybeginnerswebdev

#promptengineering

#python-frameworks

#reactnativeotpautoverify

#regimedetection

#reinforcementlearning

#retrocomputing

#secretsmanagement

#selfimprovement

#semanticchunking

#semanticsearch

#softwaredevelopment

#softwareengineering

#softwarequality

#sustainability

#testautomation

#theweeklchallenge

#troubleshooting

#tseasınıfısızmatesti

#vectordatabase

#virtualization

#virtualmachine

#workplaceaitools

#go

#codeql

#semgrep

DEVMay 3, 2026 · 1d ago

"A Chinese Language Teacher's API Security Check (2) : SQL Injection, XSS, Prompt Hijacking - All Prevented

Hello everyone, I'm @xiaoqiangapi, the Chinese teacher who gives apis a "check-up". [An article on] (HTTP: / / https://dev.to/xiaoqiangapi3721/a-chinese-language-teachers-api-security-checkup-1-passing-all-three-certification-checkpoints-3d1e, I tested the most basic authentication mechanisms - no Key, wrong Key, empty requests - and the API blocked them all. But authentication is just the first g

#security#api#deepseek#buildinpublic