Web Development

5513 readers

50 users here now

Welcome to the web development community! This is a place to post, discuss, get help about, etc. anything related to web development

What is web development?

Web development is the process of creating websites or web applications

Rules/Guidelines

Follow the programming.dev site rules
Keep content related to web development
If what you're posting relates to one of the related communities, crosspost it into there to help them grow
If youre posting an article older than two years put the year it was made in brackets after the title

Related Communities

Wormhole

!cool_github_projects@programming.dev

Some webdev blogs

Not sure what to post in here? Want some web development related things to read?

Heres a couple blogs that have web development related content

https://frontendfoc.us/ - [RSS]
https://wesbos.com/blog
https://davidwalsh.name/ - [RSS]
https://www.nngroup.com/articles/
https://sia.codes/posts/ - [RSS]
https://www.smashingmagazine.com/ - [RSS]
https://www.bennadel.com/ - [RSS]
https://web.dev/ - [RSS]

Credits

Icon base by Delapouite under CC BY 3.0 with modifications to add a gradient

founded 2 years ago

MODERATORS

snowe@programming.dev

erlingur@programming.dev

Ategon@programming.dev

I Audited the Privacy of Popular Free Dev Tools — The Results Are Terrifying (www.toolbox-kit.com)

submitted 1 day ago by BrikoX@lemmy.zip to c/webdev@programming.dev

6 comments fedilink hide all child comments

I tested what happens when you paste code into popular online developer tools. Some sites contact 96 external domains, set 540 cookies, and run real-time ad auctions on your data. Here is everything I found.

top 6 comments

sorted by: hot top controversial new old

[–] Railcar8095@lemmy.world 12 points 20 hours ago (1 children)

Site 5: regex101.com — The Honorable Mention What it does: Regular expression testing and debugging Why it is different: regex101.com stands out as significantly more privacy-respecting than the others tested. Here is what they do right:

My boy regex101, sorry if I ever doubted you.

I love you

[–] Kissaki@programming.dev 1 points 17 hours ago

It's in the name after all. 1 regex, 0 other stuff, and 1 com.

[–] Kissaki@programming.dev 2 points 16 hours ago

That /unsaved/{id} path with a unique server-assigned identifier means your diff content was transmitted to and stored on their servers.

Not necessarily. URLs can be changed client-side, within the browser, through JavaScript. The fact that the URL changed to unsaved alone is no proof. It could very well be browser-local, labeled unsaved and held in session store for example, ready to be saved.

With the other indications, you can of course make a guess and/or consider it a strong indication.

It should be pretty obvious/observable when observing interaction and network requests within the browser. A network request with the content as body would be much better proof.

[–] SanctimoniousApe@lemmings.world 11 points 1 day ago

Well, nice to have validation of my feeling that what passes for "developers" nowadays are clueless idiots far more often than it used to be.

[–] ImgurRefugee114@reddthat.com 4 points 21 hours ago

Yeah and this isn't exclusive to dev tools. Shit like that is why I run umatrix in strict mode with JS disabled by default.

[–] silasmariner@programming.dev 3 points 20 hours ago* (last edited 20 hours ago)

I have never understood how a dev can be comfortable pasting a valid jtw Auth token into a random website to decode it, when there are several very good cli tools that will do this for you locally, faster, and much more securely