| Security Measure | Description | |
|---|---|---|
| ☐ | Use HTTPS everywhere | Prevents basic eavesdropping and man-in-the-middle attacks |
| ☐ | Input validation and sanitization | Prevents XSS attacks by validating all user inputs |
| ☐ | Don't store sensitive data in the browser | No secrets in localStorage or client-side code |
| ☐ | CSRF protection | Implement anti-CSRF tokens for forms and state-changing requests |
| ☐ | Never expose API keys in frontend | API credentials should always remain server-side |
Michael Sniffq
mattppal
/ security-checklist.md
Last active
October 20, 2025 13:43
A simple security checklist for your vibe coded apps
menushka
/ airdropSorter.scpt
Created
December 30, 2018 22:47
A Folder Action script written in AppleScript used to separate AirDropped files into a different folder other than the default Downloads folder
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| property AIRDROP_FOLDER : "Path:to:AirDrop:Folder:in:Alias:format" | |
| property QUARANTINE_KEY : "59" | |
| property GET_QUARANTINE_COMMAND_START : "ls -l -@ '" | |
| property GET_QUARANTINE_COMMAND_END : "' | tr '\\n' ' ' | sed 's/.*com\\.apple\\.quarantine\\s*\\(\\d*\\)/ \\1/' | awk '{$1=$1};1'" | |
| on adding folder items to this_folder after receiving added_items | |
| repeat with i from 1 to length of added_items | |
| set current_item to item i of added_items | |
| set quarantine_type to getQuarantineType(POSIX path of current_item) |
jesstelford
/ event-loop.md
Last active
October 16, 2025 15:48
What is the JS Event Loop and Call Stack?
Solution to https://twitter.com/nolanlawson/status/578948854411878400.
doSomething().then(function () {
magnetikonline
/ README.md
Last active
August 27, 2025 06:08
Setting Nginx FastCGI response buffer sizes.
By default when Nginx starts receiving a response from a FastCGI backend (such as PHP-FPM) it will buffer the response in memory before delivering it to the client. Any response larger than the set buffer size is saved to a temporary file on disk.
This process is outlined at the Nginx ngx_http_fastcgi_module page manual page.
ksafranski
/ SimpleStore.js
Last active
July 2, 2022 15:25
Simple localStorage function with Cookie fallback for older browsers.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /** | |
| * Simple localStorage with Cookie Fallback | |
| * v.1.0.0 | |
| * | |
| * USAGE: | |
| * ---------------------------------------- | |
| * Set New / Modify: | |
| * store('my_key', 'some_value'); | |
| * | |
| * Retrieve: |
rgreenjr
/ postgres_queries_and_commands.sql
Last active
October 29, 2025 19:10
Useful PostgreSQL Queries and Commands
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -- show running queries (pre 9.2) | |
| SELECT procpid, age(clock_timestamp(), query_start), usename, current_query | |
| FROM pg_stat_activity | |
| WHERE current_query != '<IDLE>' AND current_query NOT ILIKE '%pg_stat_activity%' | |
| ORDER BY query_start desc; | |
| -- show running queries (9.2) | |
| SELECT pid, age(clock_timestamp(), query_start), usename, query | |
| FROM pg_stat_activity | |
| WHERE query != '<IDLE>' AND query NOT ILIKE '%pg_stat_activity%' |
As configured in my dotfiles.
start new:
tmux
start new with session name: