Following from Accessibility audits: getting started, here are practical tips on how to procure / schedule an accessibility audit, and how to structure the report.
Welcome to curlylint.org!
Curlylint now has a website! 🎉
Timing attacks, everywhere
Ever heard of timing attacks? Turns out timing attack vulnerabilities are pretty common. It’s unclear to me how practical those attacks are, but I wouldn’t risk it.
Accessibility audits: getting started
Accessibility audits can be daunting to get started with. Here are my recipes to deliver accessibility audits for web projects, combining multiple layers of automation with manual testing to get the best of both worlds.
Conventions to organize React projects
I’ve spent a lot of time thinking of how best to structure React projects over the last few years. This is especially important when React is a central part of the project’s front-end tech stack, as React in itself has very few opinions about how to organize code (it’s a library, not a framework). Here are my notes.