Discover mikewest/spec-questionnaire Open Source project

Nginx doesn't generate etags for static content. I'd like it to. Let's see if I can remember some C from college.

301

privacy-budget

198

nginx-static-etags

cookies-over-http-bad

Archived proposal from 2018. Perhaps the approach in mikewest/scheming-cookies will be more successful!

jslint-utils

Wrapper scripts for running JSLint locally, and for generating test reports for Hudson

Literals could be different than non-literals.

tc39-proposal-literals

credentialmanagement

Credential Management

CSS

cookie-incrementalism

Incrementally better cookies.

Personal draft of the Web Application Security WG's Content Security Policy specification.

content-security-policy

Secure Contexts, but with _more_ secureness!

securer-contexts

baseline-header

What if developers could opt-into better default behaviors en masse, forcing them to pick and choose the legacy risks they want to enable.

palmerized-chrome

https://noncombatant.org/2014/03/11/privacy-and-security-settings-in-chrome/

Signature-based Resource Loading Restrictions

signature-based-sri

deprecating-document-domain

`document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?

scheming-cookies

Cookies should take scheme into account, just like every other storage mechanism on the web.

static_gettext

`gettext` wrapper, enabling localization of static documents and websites.

A Textpattern plugin enabling import and export of pages, forms, and CSS rules. Unmaintained, released under MIT license.

mcw_templates

PHP

strict-csp-for-everyone

This is both a terrible and wonderful idea.

sanitizer-playground

A demonstration of the HTML Sanitizer API.

A vCard website. Doesn't everyone have one of these?

vCard

A minimal "Send to Instapaper" Chrome extension.

Instapaper-Chrome-Extension

deprecate-it

Deprecate it.

Pompously described (in _2005_) as "Ajax without the confusing API." Unmaintained, released under MIT license.

datarequestor

Mike Generated Content; even better than Web 2.0.

mgc

What if HSTS only applied to top-level navigations?

strict-navigation-security

presentations

Various bits and pieces of presentations

A "teaching myself Ruby and Git by writing a Rack-based blog" project

fallow

Ruby

mitigation-supply

Mitigations. Supplied.

Things I think you should read.

appengine-thingsyoushouldread

contentsecuritypolicy.info

Consider deploying Cross-Origin Resource Policy.

consider-deploying-corp

I'm writing (read: porting) a top-down JavaScript parser to teach myself Python. Weird, eh?

topdown

A toy css parser, written to teach myself C.

css-parser

internetdrafts

Wouldn't it be nice if `Cross-Origin-Opener-Policy` was applied by default?

coop-by-default

resource-policy

Wouldn't it be nice if servers could assert more granular things about how a resource should be used?

consolemessages

Maybe a project?

vim-markdown

Vim Markdown runtime files that WON'T leave you sterile

Vim Script

embedding-requires-opt-in

Embedding a document (via `<iframe>`, etc) should require explicit opt-in from the embedee.

hasacdn.net

Nginx configuration for *.hasacdn.net

mikewest.org

Working through Intro to Algorithms. In JavaScript.

algorithms101

philosophic_li

Code for philosophic.li

artur-yes

unnamedproject

I need a name.

Some Python code to implement subversion hooks.

pysvnhooks

The phpBB-based forum.lddebate.org

forum_lddebate_org

PHP

mikewest.github.com

projects.mikewest.org

It's an isolated website. Maybe yours should follow suit?

isolated.website

Sample AppEngine i18n Code

sample-i18n

starting on a build script that reads dependencies from the files, rather than hard-coding them...

frontend-build-scripts

HTMLOutliner

The beginnings of a project.

w15y.com

JavaScript-based local-timezone based string replacement. Unmaintained, released under MIT license.

perfecttime

PyPlaceholder, hosted via Flask.

flask-pyplaceholder

Post-`forbes.com`, I think we can say that "http" => "https".

http-is-https

Placeholder images. Generated via the magic of PyPNG!

PyPlaceholder

We got a big TV in the office. I should fill it with something.

chromium-dashboard

Political and ethical texts relevant to LD debate; crafted in the image of http://federali.st/.

texts_lddebate_org

coop

WIP COOP.

A very, very unmaintained Textpattern plugin for a potentially dead site.

mcw_ma_gnolia

eightyize

80 columns.

upgrade-demo

A default nginx site that returns nothing but 501.

nginx_501

hillegass-exercises

Working through "Cocoa Programming for Mac OS X". Slowly.

Objective-C

doodlings

Everyone needs a public ~/tmp directory.