Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> security issues that make Electron bad

Exposing a HTTP port with application state is a million times worse for security



The server binds to the loopback interface, so it's not exposed to the network at all. Then as long as you use CSRF protection and an appropriate Content Security Policy it is safe.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: