Are "considered harmful" lists considered harmful?

In the past weeks I’ve been thinking of collecting a list of posts of the “X considered harmful” articles, so yesterday I just created a simple github repo with the very first few articles I’ve been able to find (interesting).

There has been a lot of criticism around these type of posts, but I believe, especially for the more recent ones, that they are written with good intentions (ie. Lea Verou on jQuery).

Would love to get your inputs on the list!


Hi there! I recently wrote an ebook on web application security, currently sold on leanpub, the Amazon Kindle store and gumroad.

It contains 160+ pages of content dedicated to securing web applications and improving your security awareness when building web apps, with chapters ranging from explaining how to secure HTTP cookies with the right flags to understanding why it is important to consider joining a bug bounty program.

Feel free to skim through some of the free chapters published on this blog and, if the content seems interesting enough to you, grab a copy on leanpub, the Amazon Kindle store, gumroad or simply checkout right down below!

Buy the Web Application Security ebook for $9.99

In the mood for some more reading?

...or check the archives.