Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
true_religion
on March 14, 2017
|
parent
|
context
|
favorite
| on:
JSON Web Tokens should be avoided
I was under the impression that newly minted developers would use existing libraries and frameworks, which have already take security into account.
saint_fiasco
on March 14, 2017
[–]
The article points out that many popular libraries have vulnerabilities and unsafe defaults.
lostcolony
on March 14, 2017
|
parent
[–]
Which to me says that relying on there not being any footguns is wishful thinking. The better recourse, to my mind, is to stress the need for mentorship, so people learn to proactively look out for traps.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
