I was hired by Puroto

Finally, a big project! A new social media site. No, you can't test it. The thing doesn't even remotely work yet. However, it will be an interesting challenge. Security is a pretty big concern of course, but I was hired as the frontend dev, sooooooo at the very most I'll just be catching XSS vulns

i probably wont post about it too much, and we've not pushed any new commits yet for a while, but the design part is pretty well laid out iirc. it's a shame there isn't much good coordination, at least not for the couple of weeks i've been there. I'll admit, i'm quite clueless

The site will be using Vue.js. Already not a huge fan of that, I don't typically work with JS frameworks as I prefer to just do everything pretty vanilla, letting PHP handle literally all of the backend. These other devs though, they say PHP is old and stinky and also kinda is easy to XSS.

I'm not sure how Vue.js is any more secure, they haven't explained that and I don't believe it. PHP is also pretty similar to J*vascr*pt in a few ways and I literally was able to learn prettymuch all of it in just 30 minutes or less... not kidding. Only thing that takes time really is learning all the libraries, but php.com exists so you can just have the documentation open in another window. prettymuch every server has php 7 and up support, and mostly php 8, so you dont even really have to install it. alot of stuff is part of PHP core now. And if you want to learn how to stop XSSes, just use this as reference

PHP is pretty old though. Old languages can be pretty ugly, we all know how C++ turned out, but hey, that's subjective mostly

Then again, so are Java and J*vascr*pt and etc... nobody whines about those. PHP is still being maintained so that's not the issue either