Simon Willison’s Weblog

4th July 2008 - Link Blog

quipt (via) Extremely clever idea: Cache JavaScript in window.name (which persists between page views and can hold several MB of data), but use document.referrer to check that an external domain hasn’t loaded the cache with malicious code for an XSS attack. UPDATE: Jesse Ruderman points out a fatal flaw in the comments.

Posted 4th July 2008 at 3:49 pm

Recent articles

My fireside chat about agentic engineering at the Pragmatic Summit - 14th March 2026
Perhaps not Boring Technology after all - 9th March 2026
Can coding agents relicense open source through a “clean room” implementation of code? - 5th March 2026

This is a link post by Simon Willison, posted on 4th July 2008.

caching 49 javascript 745 optimisation 6 quipt 1 referrer 1 security 578 windowname 2 xss 60

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe