dvh
7 hours ago
Isn't there xss in the first demo? What if title is user supplied and it's something like <script>alert("xss")</script>
_nhh
6 hours ago
User supplied stuff must always be sanitized :)
7 hours ago
Isn't there xss in the first demo? What if title is user supplied and it's something like <script>alert("xss")</script>
6 hours ago
User supplied stuff must always be sanitized :)
7 hours ago
API would be the proper term for this, no?
Maybe "typed API"?
6 hours ago
What do you mean?