1. 2

Regular disclaimer: I’m not the author and I’m not affiliated with the site in any way.

  1.  

  2. 2

    As the article says, for this to be actually secure, the HTML and JavaScript must be served via HTTPS anyway. The reasoning is that it’d be possible to use Man in the Middle to replace the JavaScript (and thus change/remove the encryption).

    Some people ignore this part and I think that’s a big mistake.

    1. 3

      Yep; however you could also run the app locally, to would such issues :) This would work of course only if you’re using it for yourself.

      1. 2

        to would

        Should be:

        to avoid

        Couldn’t find the “Edit” button.