Message from JavaScript discussions

February 2017

— You must have

— 

Permissions were not granular or controlled in the backend, so "user cannot do X" meant "hide button that does X". I unhid the button with the inspector and was shocked when it worked

— Banking Software is terrible, I don't know why

— Bad devs

— Overpaid bad devs

— Lmao, yesterday I used Webpack to be able to use ES6 on a AWS Lambda.
Yes maybe I abused, but it was so wrong? I love the new spec

Message permanent page

— I could tell %80 of their time was spent fixing 9000 bugs

— They just constantly bumblefuck security

— Yep

— Stuff like my bank just blacklisting a list of like 20 special chars

— I talked to a guy who breached a whole bank's mainframe because an html field literally just dumped into sql, so he typed sql queries and got everything

Message permanent page

— Hilarious