July 15, 2025

We Should Care More About Web App Security

Listen Later

1 hour 3 minutes

In this episode, Matt and Mike dive deep into web app security by walking through a simple SaaS note-taking app and breaking down vulnerabilities at each layer—from frontend and backend to auth and hosting. With 16 billion credentials recently leaked and AI increasing attack complexity, even indie devs need to lock things down. They cover common security pitfalls like XSS, CSRF, IDOR, insecure cookies, and more—along with practical mitigations using tools like tRPC, Prisma, and Next.js. Whether you’re building solo or part of a team, this episode will help you build safer apps from the ground up.

Show Notes: https://www.htmlallthethings.com/podcasts/we-should-care-more-about-web-app-security

Powered by CodeRabbit - AI Code Reviews: https://coderabbit.link/htmlallthethings

Use our Scrimba affiliate link (https://scrimba.com/?via=htmlallthethings) for a 20% discount!! Full details in show notes.

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

HTML All The Things - Web Development, AI, and Developer Careers

By Matt Lawrence and Mike Karan

4.8

4949 ratings

July 15, 2025

We Should Care More About Web App Security

Listen Later

1 hour 3 minutes

In this episode, Matt and Mike dive deep into web app security by walking through a simple SaaS note-taking app and breaking down vulnerabilities at each layer—from frontend and backend to auth and hosting. With 16 billion credentials recently leaked and AI increasing attack complexity, even indie devs need to lock things down. They cover common security pitfalls like XSS, CSRF, IDOR, insecure cookies, and more—along with practical mitigations using tools like tRPC, Prisma, and Next.js. Whether you’re building solo or part of a team, this episode will help you build safer apps from the ground up.

Show Notes: https://www.htmlallthethings.com/podcasts/we-should-care-more-about-web-app-security

Powered by CodeRabbit - AI Code Reviews: https://coderabbit.link/htmlallthethings

Use our Scrimba affiliate link (https://scrimba.com/?via=htmlallthethings) for a 20% discount!! Full details in show notes.

...more

More shows like HTML All The Things - Web Development, AI, and Developer Careers

The Joe Rogan Experience by Joe Rogan

The Joe Rogan Experience

228,295 Listeners

The Changelog: Software Development, Open Source by Changelog Media

The Changelog: Software Development, Open Source

288 Listeners

The Side Hustle Show by Nick Loper of Side Hustle Nation | YAP Media

The Side Hustle Show

1,581 Listeners

Software Engineering Daily by Software Engineering Daily

Software Engineering Daily

624 Listeners

JavaScript Jabber by Charles M Wood

JavaScript Jabber

234 Listeners

This Past Weekend w/ Theo Von by Theo Von

This Past Weekend w/ Theo Von

28,122 Listeners

JavaScript Jabber by Charles M Wood

JavaScript Jabber

62 Listeners

Syntax - Tasty Web Development Treats by Wes Bos & Scott Tolinski - Full Stack JavaScript Web Developers

Syntax - Tasty Web Development Treats

984 Listeners

The freeCodeCamp Podcast by freeCodeCamp.org

The freeCodeCamp Podcast

483 Listeners

PodRocket by LogRocket

PodRocket

60 Listeners

Whiskey Web and Whatnot by Skill Issue Studios

Whiskey Web and Whatnot

55 Listeners

Develop Yourself by Brian Jenney

Develop Yourself

7 Listeners

The Startup Ideas Podcast by Greg Isenberg

The Startup Ideas Podcast

212 Listeners

WEAPONIZED with Jeremy Corbell & George Knapp by Jeremy Corbell and George Knapp

WEAPONIZED with Jeremy Corbell & George Knapp

1,429 Listeners

Front-End Fire by TJ VanToll, Paige Niedringhaus, Jack Herrington

Front-End Fire

11 Listeners