Notes On Work - by Caleb Porzio

AI saved me like a month of work on this one thing let me tell you about it

7 snips
Sep 5, 2025
Discover how AI can revolutionize coding practices! Delve into the development of a CSP-compliant version of Alpine JS and the importance of web security. Learn about the challenges posed by inline JavaScript and how AI tools can streamline the process of creating a robust JavaScript parser. This conversation highlights real-world applications of technology that can save time and enhance security in web development.
Ask episode
AI Snips
Chapters
Transcript
ANECDOTE

Built A CSP-Safe Alpine.js

  • Caleb Porzio built a CSP-safe build of Alpine.js and released it as a new version.
  • He did this as part of a broader goal to make Livewire CSP-safe too, though only Alpine is public now.
INSIGHT

Why CSP Matters For Some Sites

  • Content Security Policy (CSP) is a meta tag that restricts where scripts and styles can run.
  • CSP is crucial for high-security sites like government and finance even if most apps ignore it.
INSIGHT

CSP Prevents Cross-Site Script Attacks

  • CSP defends against cross-site scripting by blocking inline scripts and unsafe eval.
  • This prevents attackers from injecting scripts that could steal cookies or manipulate pages in sensitive apps.
Get the Snipd Podcast app to discover more snips from this episode
Get the app