Yuya Saito
@frontendweekly.tokyo
https://frontendweekly.tokyo/
A Weekly Frontend Roundup from Tokyo
A Weekly Frontend Roundup from Tokyo
The lethal trifecta for AI agents: private data, untrusted content, and external communication
The lethal trifecta for AI agents: private data, untrusted content, and external communication
If you are a user of LLM systems that use tools (you can call them “AI agents” if you like) it is critically important that you understand the risk of …
simonwillison.net
December 26, 2025 at 9:42 AM
The lethal trifecta for AI agents: private data, untrusted content, and external communication
What are OKLCH colors?
What are OKLCH colors?
Article about the OKLCH color model.
jakub.kr
December 26, 2025 at 6:28 AM
What are OKLCH colors?
Agentic Browser Security: Indirect Prompt Injection in Perplexity Comet
Agentic Browser Security: Indirect Prompt Injection in Perplexity Comet
The security team from Brave took a look at Comet, the LLM-powered "agentic browser" extension from Perplexity, and unsurprisingly found security holes you can drive a truck through. The vulnerability...
simonwillison.net
December 26, 2025 at 2:51 AM
Agentic Browser Security: Indirect Prompt Injection in Perplexity Comet
From Black Box to Blueprint
From Black Box to Blueprint
Lost source code? Legacy systems don’t have to stay black boxes—AI can turn them into blueprints
martinfowler.com
December 25, 2025 at 9:42 AM
From Black Box to Blueprint
Can components conform to WCAG? | hidde.blog
Can components conform to WCAG?
Here's why they technically can't, and why that makes sense to me.
hidde.blog
December 25, 2025 at 6:28 AM
Can components conform to WCAG? | hidde.blog
Communication is The Job
Communication is The Job
We cannot help but communicate and our failure to embrace that reality can leave our teams in a state of information insecurity. Instead, we need to own our responsibility and be proactive.
boz.com
December 25, 2025 at 2:51 AM
Communication is The Job
Designing for User Font-size and Zoom | OddBird
Designing for User Font-size and Zoom
Using modern CSS units and math functions
www.oddbird.net
December 24, 2025 at 9:42 AM
Designing for User Font-size and Zoom | OddBird
Review of MIT NANDA: The Internet of AI Agents
LinkedIn Pulse
www.linkedin.com
December 24, 2025 at 6:28 AM
Review of MIT NANDA: The Internet of AI Agents
Six Principles for Production AI Agents
www.app.build
December 24, 2025 at 2:51 AM
Six Principles for Production AI Agents
The Age of the Super IC ・ Hardik Pandya
The Age of the Super IC
With emergence of AI as the new tool, there's clear signals that the IC track is becoming exciting again.
hvpandya.com
December 23, 2025 at 9:42 AM
The Age of the Super IC ・ Hardik Pandya
How to use Playwright for unit testing | Go Make Things
How to use Playwright for unit testing
Kelp, my UI library for people who love HTML, officially launched as v1 stable yesterday! I was chatting about my approach to unit testing last week, and a few folks were surprised to learn that I use...
gomakethings.com
December 23, 2025 at 6:28 AM
How to use Playwright for unit testing | Go Make Things
Put Names and Dates On Documents - Infrequently Noted
Put Names and Dates On Documents - Infrequently Noted
Not only is unattributed business and technical writing a time-waster, careers hang in the balance. If you write anything, put your name on it; not for me, but for your future self.
infrequently.org
December 23, 2025 at 2:51 AM
Put Names and Dates On Documents - Infrequently Noted
In User Research, Don’t Stop at “Yes” or “No” - NN/g
In User Research, Don’t Stop at “Yes” or “No”
Product stakeholders see user research as a tool to validate already-made decisions. But binary findings that confirm or reject a design provide little value.
www.nngroup.com
December 22, 2025 at 9:42 AM
In User Research, Don’t Stop at “Yes” or “No” - NN/g
The biggest threat to your design system is your need to be liked | by Lauren LoPrete | Jul, 2025 | Medium
medium.com
December 22, 2025 at 6:28 AM
The biggest threat to your design system is your need to be liked | by Lauren LoPrete | Jul, 2025 | Medium
GitHub - jarulraj/periodic-table: A Periodic Table of System Design Principles
GitHub - jarulraj/periodic-table: A Periodic Table of System Design Principles
A Periodic Table of System Design Principles. Contribute to jarulraj/periodic-table development by creating an account on GitHub.
github.com
December 19, 2025 at 9:42 AM
GitHub - jarulraj/periodic-table: A Periodic Table of System Design Principles
ETags: What they are, and how to use them | Fastly
ETags: What they are, and how to use them | Fastly
How to optimize your ETags to speed up your site and reduce calls to your origin without requiring significant code refactoring or content overhaul.
www.fastly.com
December 19, 2025 at 6:28 AM
ETags: What they are, and how to use them | Fastly
Human Who Codes Newsletter - The return of tech specs
Human Who Codes Newsletter - The return of tech specs
.ck-link { text-decoration: underline; } @media only screen { .email * { word-break: break-word; } } @media screen and (max-width: 384px) { .mail-message-content { width: ...
ckarchive.com
December 19, 2025 at 2:51 AM
Human Who Codes Newsletter - The return of tech specs
Tokens: The New Oil - by Kent Beck
Tokens: The New Oil
What happens when demand exceeds supply? A 3X: Explore/Expand/Extract Perspective
tidyfirst.substack.com
December 18, 2025 at 6:28 AM
Tokens: The New Oil - by Kent Beck
The Core Model: Start FROM The Answer, Not WITH The Solution — Smashing Magazine
The Core Model: Start FROM The Answer, Not WITH The Solution — Smashing Magazine
The Core Model is a practical methodology that flips traditional digital development on its head. Instead of starting with solutions or structure, we begin with a hypothesis about what users need and...
www.smashingmagazine.com
December 18, 2025 at 2:51 AM
The Core Model: Start FROM The Answer, Not WITH The Solution — Smashing Magazine
How to get better at strategy? | Irrational Exuberance
How to get better at strategy?
One of the most memorable quotes in Arthur Miller’s The Death of a Salesman comes from Uncle Ben, who describes his path to becoming wealthy as, “When I was seventeen, I walked into the jungle, and...
lethain.com
December 16, 2025 at 9:42 AM
How to get better at strategy? | Irrational Exuberance
The Power of Defining the Problem - Annie Vella
The Power of Defining the Problem - Annie Vella
We live in an era where rapid solutions are celebrated. The quicker we solve a problem, the more productive we appear. But what if, in our rush to get to a resolution, we’re missing the mark entirely?...
annievella.com
December 16, 2025 at 6:28 AM
The Power of Defining the Problem - Annie Vella
Mastering default values in JavaScript with the nullish coalescing (??) operator - Matt Smith
Mastering default values in JavaScript with the nullish coalescing (??) operator - Matt Smith
The nullish coalescing operator (??) provides a simple way to handle null or undefined values in JavaScript. It's a must-have, let me show you why.
allthingssmitty.com
December 16, 2025 at 2:51 AM
Mastering default values in JavaScript with the nullish coalescing (??) operator - Matt Smith
How to Easily Reproduce a Flaky Test in Playwright | Nicolas Charpentier
How to Easily Reproduce a Flaky Test in Playwright | Nicolas Charpentier
Stop playing whack-a-mole with flaky Playwright tests by using CPU throttling to reliably reproduce CI failures on your local machine.
www.charpeni.com
December 15, 2025 at 9:42 AM
How to Easily Reproduce a Flaky Test in Playwright | Nicolas Charpentier
NPM Security - OWASP Cheat Sheet Series
NPM Security - OWASP Cheat Sheet Series
Website with the collection of all the cheat sheets of the project.
cheatsheetseries.owasp.org
December 15, 2025 at 6:28 AM
NPM Security - OWASP Cheat Sheet Series
The CSS shape() function | WebKit
The CSS shape() function
Shapes are an important aspect of graphic design.
www.webkit.org
December 15, 2025 at 2:51 AM
The CSS shape() function | WebKit