I noticed while looking at the HTML of an edit page that WordPress uses a lot of hidden input elements for storing nonces. Is there a significant advantage to using either this style of storing nonces for AJAX use or using those stored via the wp_localize_script style?
Nonce best practices: hidden input vs. wp_localize_script?
Depends, will the form work with AJAX turned off?
If so use an input and degrade gracefully.
Otherwise, define nonces used by JS using JS for consistency, and to prevent grabbing stuff from the DOM
Input fields are sent automatically, even when JavaScript is turned off. You can easily grab their values per JavaScript for AJAX requests, so there is no benefit coding them as JS object.