i'm thinking about writing a zine reference for CORS, XSS, CSP, CSRF, etc because all the acronyms feel so impossible to remember and it's so useful to know the basics
but.. what is all that stuff _called_? "web security" and "browser security" both feel way too broad. So far I've just been saying "you know, CSRF and CORS and XSS and stuff" to people
@b0rk http security features?
@b0rk how about something along the lines of "browser injection security" or "javascript security" (i guess also too broad) or so? i don't know if anyone uses such terms, never thought about it before that way. but CSRF, CORS, XSS, and CSP all have to do with potential injection of javascript code where it should not be executed.
