top | item 46326500 (no title) collinmanderson | 2 months ago with http-only they can't _steal_ the cookie, but they can still _use_ the cookie. It reduces the impact but doesn't fully solve it. discuss order hn newest No comments yet.
No comments yet.