Dev Depot: jQuery Audit, Auditing Conflicts

One of the most popular technologies employed by modern web developers is jQuery, which powers countless sites and mobile applications. As easy as the framework is to use, however, a variety of conflicts and other concerns await even the most careful of coders.

Some of the most significant of these issues surround the safety of a website.

Testing for common conflicts and more is where automated auditing tools earn their bread and butter.

Freelance security blogger Adrian Stolarski explains that in its role as a lightweight programming library for JavaScript, jQuery’s main task is to manipulate the DOM tree of elements. This causes threats from the use of jQuery on ()Event and from Reply(), along with jQuery’s storage of the root page template. Other problems arise from the use of legacy versions of jQuery, or multiple versions.

“Writing a good jQuery script can be terribly difficult. You must unfortunately rely on trial and error,” Stolarski says. “And then what? Do you have to rely on trial and error to find out what is good and what is not? Does it have to be this way? Of course not.”

Testing for common conflicts and more is where automated auditing tools earn their bread and butter.

According to its developer, jQuery Audit (www.github.com/zertosh/jquery-audit) is a Chrome Developer Tools extension for auditing jQuery, by creating a sidebar within the Elements panel, containing jQuery delegated events, internal data and more; presented as live DOM nodes, functions, and objects.

Google says that its Chrome Developer Tools (www.developers.google.com/chrome-developer-tools/) is a set web authoring and debugging tools built into Google Chrome that provides web developers deep access into the internals of the browser or application.

It is an extensible platform with substantial community support.

For its part, jQuery Audit allows users to locate delegated events and their handlers, with the variables behaving like objects in the sources panel’s “Scope Variables” sidebar.

Users can right-click on a function and go to “Show Function Definition,” or hover over a DOM node to highlight it in the file. Right-clicking to “Reveal in Elements Panel” adds another view.

Zertosh, the extension’s developer, notes that the content of a SidebarPane can be an HTML page, a JSON object, or “the result of an expression,” but adds neither an HTML page nor a JSON object has the ability to display “live” objects.

“The reason for making this extension was so that I could find a delegated event and be able to use ‘Show Function Definition’ on the handler,” Zertosh explains. “For that effect, the contents of the sidebar is actually ‘the result of an expression’ with a lot of trickery to make it look not-so-ugly.”

To differentiate between actual object data and informational messages, Zertosh went with the @(...) convention to prevent confusion with string data.

It even works with popular iframe types.

A useful extension for debugging jQuery events and for the introspection of jQuery objects, the tool’s ability to view the source of a bound function and ability to track down unexpected event behavior, coupled with its simple interface, make it a winner.

Install it from the Chrome Web Store and let jQuery Audit improve your website’s performance by identifying underlying jQuery scripting problems. Your customers will thank you.

Related:  

Copyright © 2024 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More Articles

opinion

How to Halt Hackers as Fraud Attacks Rise

For hackers, it’s often a game of trial and error. Bad actors will perform enumeration and account testing, repeating the same test on a system to look for vulnerabilities — and if you are not equipped with the proper tools, your merchant account could be the next target.

Cathy Beardsley ·
profile

VerifyMy Seeks to Provide Frictionless Online Safety, Compliance Solutions

Before founding VerifyMy, Ryan Shaw was simply looking for an age verification solution for his previous business. The ones he found, however, were too expensive, too difficult to integrate with, or failed to take into account the needs of either the businesses implementing them or the end users who would be required to interact with them.

Alejandro Freixes ·
opinion

How Adult Website Operators Can Cash in on the 'Interchange' Class Action

The Payment Card Interchange Fee Settlement resulted from a landmark antitrust lawsuit involving Visa, Mastercard and several major banks. The case centered around the interchange fees charged to merchants for processing credit and debit card transactions. These fees are set by card networks and are paid by merchants to the banks that issue the cards.

Jonathan Corona ·
opinion

It's Time to Rock the Vote and Make Your Voice Heard

When I worked to defeat California’s Proposition 60 in 2016, our opposition campaign was outspent nearly 10 to 1. Nevertheless, our community came together and garnered enough support and awareness to defeat that harmful, misguided piece of proposed legislation — by more than a million votes.

Siouxsie Q ·
opinion

Staying Compliant to Avoid the Takedown Shakedown

Dealing with complaints is an everyday part of doing business — and a crucial one, since not dealing with them properly can haunt your business in multiple ways. Card brand regulations require every merchant doing business online to have in place a complaint process for reporting content that may be illegal or that violates the card brand rules.

Cathy Beardsley ·
profile

WIA Profile: Patricia Ucros

Born in Bogota, Colombia, Ucros graduated from college with a degree in education. She spent three years teaching third grade, which she enjoyed a lot, before heeding her father’s advice and moving to South Florida.

Women In Adult ·
opinion

Creating Payment Redundancies to Maximize Payout Uptime

During the global CrowdStrike outage that took place toward the end of July, a flawed software update brought air travel and electronic commerce to a grinding halt worldwide. This dramatically underscores the importance of having a backup plan in place for critical infrastructure.

Jonathan Corona ·
opinion

The Need for Minimal Friction in Age Verification Technology

In the adult sector, robust age assurance, comprised of age verification and age estimation methods, is critical to ensuring legal compliance with ever-evolving regulations, safeguarding minors from inappropriate content and protecting the privacy of adults wishing to view adult content.

Gavin Worrall ·
opinion

Account-to-Account Payments: The New Banking Disruptor?

So much of our industry relies upon Visa and Mastercard to support consumer payments — and with that reliance comes increased scrutiny by both brands. From a compliance perspective, the bar keeps getting raised until it feels like we end up spending half our time making sure we are compliant rather than growing our business.

Cathy Beardsley ·
profile

WIA Profile: Samantha Beatrice

Beatrice credits the sex positivity of Montreal for ultimately inspiring her to pursue work in adult entertainment. She had many friends working in the industry, from sex workers to production teams, so it felt like a natural fit and offered an opportunity to apply her marketing and social media savvy to support people she truly believes in and wants to see succeed.

Women In Adult ·
Show More