Simon Willison’s Weblog

4th July 2008 - Link Blog

quipt (via) Extremely clever idea: Cache JavaScript in window.name (which persists between page views and can hold several MB of data), but use document.referrer to check that an external domain hasn’t loaded the cache with malicious code for an XSS attack. UPDATE: Jesse Ruderman points out a fatal flaw in the comments.

Posted 4th July 2008 at 3:49 pm

Recent articles

Writing about Agentic Engineering Patterns - 23rd February 2026
Adding TILs, releases, museums, tools and research to my blog - 20th February 2026
Two new Showboat tools: Chartroom and datasette-showboat - 17th February 2026

This is a link post by Simon Willison, posted on 4th July 2008.

caching 49 javascript 743 optimisation 6 quipt 1 referrer 1 security 575 windowname 2 xss 60

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe