Hey, I'm Tim and this is my Tech Blog.

1. React Server Components, without a framework?

   Can we use React Server Components today, without a framework like Next.js? As our experiment shows, not without significant challenges - for now at least?

2. TypeScript Legacy Experimental Decorators with Type Metadata in 2023

   I've been researching a way to modernize & speed-up a production setup making heavy use of TypeScript Legacy Experimental Decorators & Decorators Type Metadata.

3. React memo is good actually

   React memo, useMemo & useCallback can be controversial. Let us review the most common misconceptions about them, and see how they're good, actually.

4. CSRF When You Least Expect It.

   Fun with Cross-Site Request Forgery (CSRF) in a creative Web Timing Attack scenario, highlighting the risks inherent to SameSite=None session cookies.

5. Cross-Origin Resource Sharing For The Web (Extension).

   The second presentation I gave at Dashlane, in March 2021. A short introduction to Cross-Origin Resource Sharing (CORS), covering Origin, Same-Origin Policy, Cross-Site Request Forgery (CSRF), and a CORS twist with a Chrome Web Extension.

Tags

• security
• cookies
• CORS
• CSRF
• JavaScript
• concurrency
• dashlane
• presentation
• extension
• react
• memo
• performance
• frameworks
• external
• gandi
• tooling
• forms
• vite
• swc
• compilers
• decorators
• TypeScript
• this-blog
• 11ty