Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Add rel="noopener noreferrer" to target="_blank"
See original GitHub issueDescription
rel="noopener noreferrer" should be added to links containing target="_blank" as a precaution against reverse tabnabbing. For more information, please refer to the following article:
https://www.jitbit.com/alexblog/256-targetblank---the-most-underestimated-vulnerability-ever/
Code
Issue Analytics
- State:
- Created 5 years ago
- Comments:8 (5 by maintainers)
Top Results From Across the Web
Link with target="_blank" and rel="noopener noreferrer" still ...
Essentially, adding rel="noopener noreferrer" to links protects your site's users against having the site you've linked to potentially hijacking ...
Read more >What Does the rel="noopener noreferrer" Tag Mean? (& Does ...
In short, noopener is largely a security measure to prevent malicious links from gaining access to a user's browser (a phishing attack known...
Read more >What rel="noreferrer noopener" Mean and How it Affects SEO
The rel=”noreferrer” tag is a special HTML attribute that can be added to a link tag (<a>). It prevents passing the referrer information...
Read more >Add rel="noopener noreferrer" to target="_blank". · Issue #2071
If the value of the window attribute is _blank , we'll automatically add rel="noopener" . For any other value, you can set the...
Read more >Links to cross-origin destinations are unsafe
When you link to a page on another site using the target="_blank" attribute, you can expose your site to performance and security issues:....
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
This issue can be closed now.
Tip: You can include keywords in your pull request descriptions, as well as commit messages, to automatically close issues in GitHub when a corresponding pull request is merged.
More Info here: Closing issues using keywords
Finished and merged.