Simon Willison’s Weblog

11th April 2007 - Link Blog

JSON and Browser Security. Douglas Crockford suggests using secret tokens to protect JSON content, and avoiding wrapper hacks to protect unauthorised JSON delivery as they may fall foul of undiscovered browser bugs in the future.

Posted 11th April 2007 at 12:52 am

Recent articles

Thoughts on OpenAI acquiring Astral and uv/ruff/ty - 19th March 2026
GPT-5.4 mini and GPT-5.4 nano, which can describe 76,000 photos for $52 - 17th March 2026
My fireside chat about agentic engineering at the Pragmatic Summit - 14th March 2026

This is a link post by Simon Willison, posted on 11th April 2007.

douglas-crockford 14 json 144 security 579

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe