Explore the intricacies of web application security in this 18-minute JSConf talk. Delve into the reasons behind the prevalence of insecure web applications and learn about critical security concepts such as Cross-Site Scripting and Content Security Policy. Gain insights into navigation vulnerabilities and other crucial security considerations that developers must address. Discover why writing secure web applications can be challenging and acquire valuable knowledge to enhance your web development practices.