Simon Willison’s Weblog

4th July 2008 - Link Blog

quipt (via) Extremely clever idea: Cache JavaScript in window.name (which persists between page views and can hold several MB of data), but use document.referrer to check that an external domain hasn’t loaded the cache with malicious code for an XSS attack. UPDATE: Jesse Ruderman points out a fatal flaw in the comments.

Posted 4th July 2008 at 3:49 pm

Recent articles

DeepSeek V4 - almost on the frontier, a fraction of the price - 24th April 2026
Extract PDF text in your browser with LiteParse for the web - 23rd April 2026
A pelican for GPT-5.5 via the semi-official Codex backdoor API - 23rd April 2026

This is a link post by Simon Willison, posted on 4th July 2008.

caching 49 javascript 752 optimisation 6 quipt 1 referrer 1 security 598 windowname 2 xss 60

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe