Clicking on links in emails is a security risk because they could be spam. I don't do that unless it's the only way to move forward and then I double check the url. Basically I only use it to sign up then never again if possible.
In theory nothing. If you have complete confidentiality you only enough entropy to ensure that the attacker can not guess it.
But in practice things get logged, people mess up their DNS and send the request to a different party (potentially after their CDN decrypts it) or some other blunder. With HMAC as long as the recipient is validating properly (which is a whole different can of worms) the worst the attacker can do is replay requests that they have observed.
I can tell you right now without any research that video game designers reuse interface patterns and game mechanics that were already known when making new games. Those patterns and mechanics are also often analogies for real life allowing humans to intuitively play the games. If people can't play your game intuitively, they might say it's a bad game.
I don't claim to have a lot of experience on this but my intuition tells me that a connection that ends after the request needs to be reopened for the next request. What is more efficient, keeping the session open or closing it, depends on the usage pattern, how much memory does the session consume, etc. etc.
This is no different from a web app though, there’s no obvious need to reinvent the wheel. We know how to do this very very well: the underlying TCP connection remains active, we multiplex requests, and cookies bridge the gap for multi-request context. Every language has great client & server support for that.
Instead we ended up with a protocol that fights with load balancers and can in most cases not just be chucked into say an existing Express/FastAPI app.
That makes everything harder (& cynically, it creates room for providers like Cloudflare to create black box tooling & advertise it as _the_ way to deploy a remote MCP server)
Enlighten me, what is moral about lunch? All kids bring it to school. Of course, my kids also would like an a la carte restaurant for lunch, but we as parents think it is more efficient and cheaper if we just provide a lunch bag from home.
Feeding someone who is hungry or not feeding them when they cannot provide for themselves is a moral question. You can demand that parents provide for their kids but some don't.
> Feeding someone who is hungry or not feeding them when they cannot provide for themselves is a moral question.
There are many examples of programs where people are structurally fed. None of these have positive results, and all of them are based on quasi moral arguments. Yes, we don't want people dying of hunger in refugee camps nor we want children falling behind in class because of their failing parents. But there is nothing moral about choosing the easy way out of the problem.
Tbh I don't understand the need for games in web assembly. Is it really worth the effort developing an environment for games that runs in the Webbrowser when installing a game through steam or the play store is already very simple and quick
I agree. There should be a process in place for checking if changes are ready to be rolled out, and one of the checks should be a working prototype implementation, that is open source, that shows that running your systems can still be managed.
