ProSA: Introducing Worldline First Rust Open Source library
Jeremy Hergault- 6 Min To Read
- 26 Nov, 2024
We’re thrilled to announce you ProSA, our first Worldline Open Source library in …
Read more DetailsEditors' Pick
Trending Posts
Popular Post
Ryuk the Resource Reaper
Peter Steiner- 4 Min To Read
- 04 Jan, 2023
Ryuk
When you don’t know who (or what) Ryuk is, then you’re not …
Read moreDetailsRecent Posts
Testcontainers - Automated Network Testing
Michael Zinsmaier- 8 Min To Read
- 30 Aug, 2023
Introduction
Today let’s talk about reproducible, self contained and most importantly automatable network tests for Java network applications powered by Testcontainers . If you read some of my older articles on Zero Trust Network Architecture (1 , 2 & 3 ) you can easily guess that at Worldline MTS we have some practical applications for that.
Read more Details
Real life Rest API Versioning for dummies
Alexandre Touret- 11 Min To Read
- 08 Aug, 2023
Once upon a time an API …
“No matter how it looks at first, it’s always a people problem” - Gerald M. Weinberg
Read more Details
Web3 Unveiled: How Decentralization is shaping the future of the Internet
Raphaël Semeteys
- 19 Min To Read
- 01 Aug, 2023
This article aims to introduce the concept of Web3, sometimes presented as the next evolution of the Internet. We will review the ins and outs of this concept, exploring its implications and how it could reshape our interaction with the digital world. In doing so, we will try to give a glimpse of what the future of the Internet could be.
Read more Details
Diagram As Code
Valery Brasseur- 8 Min To Read
- 25 Jul, 2023
Diagram as Code (DaC) is a methodology that allows you to create and maintain software architecture diagrams using code. With DaC, you can define the structure of your application in a declarative way, using a domain-specific language (DSL) or a programming language, and generate diagrams from that code automatically. This approach has many benefits over manual diagramming, such as improved consistency, better maintainability, and increased automation.
Read more Details
Invisible code and XSS attacks
Sylvain Pollet-Villard- 11 Min To Read
- 19 Jul, 2023
Trojan: Attacks from the inside
XSS attacks were quite common at the time of the early web. They were used to steal cookies, to redirect users to malicious websites, to inject malicious code in the page, etc. Websites were more vulnerable to XSS at that time because they used a lot server-side templating with technologies like PHP or JSP, with very few built-in protections for injecting JavaScript code into HTML responses. Today, we are much more careful about escaping user inputs and evaluating HTML dynamically. We use frameworks like React or Vue.js to build our web applications, which are based on declarative templating that escape all HTML by default and encourage sending serialized data instead of HTML on the wire. Dynamic code evaluation is considered a bad practice and injection patterns are catched by code analysis tools like ESLint or SonarQube. XSS attacks have therefore to find more creative ways to inject malicious code into the page. If they can’t inject from the outside, they will try to inject from the inside, targeting the code of the application itself. They can do that directly through project dependencies or pull requests to open source projects, or indirectly through StackOverflow answers, blog posts, AI chatbots, etc.
Read more Details
Gitpod: Your mobile dev cloud IDE
Ibrahim Gharbi- 7 Min To Read
- 27 Jun, 2023
This article presents Gitpod from a mobile developer’s perspective and guides you through the process of creating an Android Studio IDE on the cloud using Gitpod, covering everything from workspace configuration to device connection.
Read more Details