The Vault Node.js SDK by Christopher "Chief" Najewicz allows developers to integrate the Vault API into their Node.js applications. This SDK is offered under the MIT License.
August has announced August Connect which web-enables its Smart Lock product. A corresponding API allows third-party app and hardware providers to integrate with the lock.
The World Wide Web Consortium (W3C) has formed a Web Payments Working Group to develop recommendations that will "make payments easier and more secure on the Web."
Authentication vulnerabilities are at the center of security issues faced by two of the web's biggest companies this week. A German security firm showed that Google's Android platform sends some authentication tokens as plain text. Similarly, Facebook is requiring many developers to update their apps to fix a problem with "leaking auth tokens" due to iframe authentication.
