NMandelbrot : running arbitrary code on client

As part of my grand plan for map-reduce in JavaScript and zero-install distributed computing, I had to think about how to gain user trust in a security context where we don’t trust the server. I couldn’t come up with a good answer. Since then, we’ve seen stories of malicious JavaScript installed to mine cryptocurrencies¬†, we … More NMandelbrot : running arbitrary code on client

Excellent Export, IE and Security

Following on from supporting large Client-side spreadsheets in Chrome, I’ve extended my pull request to also support IE, which uses its own proprietary Javascript method. Because, Microsoft. And all was good with the world. Until a Microsoft update broke HTML-formatted XLS files. Because, Microsoft. If you support XLS downloads on your site, and your users … More Excellent Export, IE and Security

Excellent Export and the Chrome URL limit

One key difference between junior and senior developers is that when they encounter a bug, senior developers are much more likely to blame themselves before others, because experience moves you up the Dunning-Kruger curve. I was given a bug report recently where Chrome was unable to download a particular spreadsheet, and IE didn’t work either. … More Excellent Export and the Chrome URL limit

Thoughts on Node.js

In my post about developing in the cloud, I started promising a few nuggets about the project I was working on, and following my diversion onto talks and security, I’m ready to start discussing it again. The project itself is fairly straightforward. It was an excuse for me to try a realistic project in Node.js … More Thoughts on Node.js