Weaponized Google OAuth Triggers Malicious WebSocket cside.dev 9 points by s-mon a year ago · 1 comment Reader PiP Save unknownhad a year ago This looks interesting, This trick is good for hiding the bad code and to bypass the CSP.