The Superpowers of JavaScript Proxies

• Sylvain Pollet-Villard
• 15 Min To Read
• 18 Mar, 2025
• • Development and programming

One of the most powerful and underused features of JavaScript is Proxies. Let’s explore together their potential scope of use.

Making an interactive and playful open source training material

• Sylvain Pollet-Villard
• 12 Min To Read
• 17 Sep, 2024
• • Open source and collaboration

How gamification turned a boring training session into a fun and engaging experience

Invisible code and XSS attacks

• Sylvain Pollet-Villard
• 11 Min To Read
• 19 Jul, 2023
• • Cybersecurity

Trojan: Attacks from the inside

XSS attacks were quite common at the time of the early web. They were used to steal cookies, to redirect users to malicious websites, to inject malicious code in the page, etc. Websites were more vulnerable to XSS at that time because they used a lot server-side templating with technologies like PHP or JSP, with very few built-in protections for injecting JavaScript code into HTML responses. Today, we are much more careful about escaping user inputs and evaluating HTML dynamically. We use frameworks like React or Vue.js to build our web applications, which are based on declarative templating that escape all HTML by default and encourage sending serialized data instead of HTML on the wire. Dynamic code evaluation is considered a bad practice and injection patterns are catched by code analysis tools like ESLint or SonarQube. XSS attacks have therefore to find more creative ways to inject malicious code into the page. If they can’t inject from the outside, they will try to inject from the inside, targeting the code of the application itself. They can do that directly through project dependencies or pull requests to open source projects, or indirectly through StackOverflow answers, blog posts, AI chatbots, etc.

TechForum 2022: feedback and behind the scenes from the staff

• Yassine Benabbas Sylvain Pollet-Villard Ibrahim Gharbi Quentin Carpentier
• 13 Min To Read
• 31 Aug, 2022
• • Professional conferences and events

Introduction

On the 5th and 6th July 2022, Worldline held its 13th edition of the TechForum. It was the first in a hybrid mode, meaning that it had both onsite and online attendees. In addition to that, it was also a first for us Ibrahim, Sylvain and Yassine to work together as the organizing team.

The shift in web front-end tooling in the 2020's

• Sylvain Pollet-Villard
• 16 Min To Read
• 29 Mar, 2022
• • Web and mobile technology

February 2022 seems like a good moment to discuss about the recent trends happening in the web frontend tooling field. Indeed, we are seeing a large part of the frontend community dropping some major tools that were both important and dominant in the past 5 years, such as Babel and Webpack, in favor of substitute newcomers. So what changed ? Let’s dig in.

Progressive Web Apps

• Bastien Durizy Sylvain Pollet-Villard Yassine Benabbas
• 20 Min To Read
• 12 Jun, 2018
• • Web and mobile technology

Introduction

Innovation in the front-end web development world can sometimes be seen as an endless and uncontrollable flow going in all directions without any form of organization or apparent master plan. Certainly, it is very difficult to keep track of all the new API and tools coming out every week. However, much of this noise is actually irrelevant when it comes to identify the global trends; the ideas that will get traction and be implemented at a large scale, defining the next status quo for the user experience on the web.