You should probably be checking "isTrusted" in postMessage() listeners
The accepted way to secure postMessage() has a bypass you likely don’t know about, even if it’s not the hugest deal on its own. →
Rendering a hidden form just to check if someone is associated is a waste of resources. Here’s how to check efficiently. →
Once again forcing you to know what I know about DKIM. →
Using “None” for POST payloads usually means something else has gone terribly wrong. →
At the moment of approval, fields on the $𝚕𝚎𝚊𝚍 object are empty strings (meaning "", not 𝑛𝑢𝑙𝑙). Your code needs to deal with that gracefully. →
Reminder (if you needed one) that newer doesn’t mean more predictable. →
Gotta love devs who don’t know Marketo but say “Just drop it in, trust us.” →
Troubleshooting slow-loading email images reveals a classic culprit. →