Ever wondered how a complex website's API is structured? Discover a quick technique to turn browser network logs into a complete OpenAPI specification, giving you an inside look at how modern web apps are built.

This article explains how to configure persistent logging for Apache Airflow on Google Kubernetes Engine (GKE) when using the Kubernetes Executor. By default, logs are lost when worker pods terminate. The solution is to use the Google Cloud Storage (GCS) FUSE CSI driver to create a ReadWriteMany PersistentVolumeClaim (PVC) backed by a GCS bucket. This involves enabling the GCS Fuse CSI driver in your GKE cluster, configuring a Google Cloud service account with appropriate permissions, and annotating the Airflow Kubernetes service accounts to use Workload Identity. Finally, you create the PersistentVolume and PersistentVolumeClaim and update your Airflow Helm chart values to use this new persistent storage for logs.

TL;DR: XSS adalah serangan injeksi skrip pada sisi klien yang memungkinkan penyerang menjalankan kode berbahaya di browser korban untuk mencuri data, mengambil alih sesi, atau menyebarkan malware.

Contoh payload

<script>alert(1)</script>
<body onload=alert('test')>
<img src="x" onerror=alert(document.cookie)>