- From: Ian Hickson <ian@hixie.ch>
- Date: Fri, 9 May 2008 16:37:59 +0000 (UTC)
On Fri, 9 May 2008, Simon Pieters wrote: > > > > > > > > Is there really any need to escape the contents of > > > > <script>/<style> at all These days? > > No, but AIUI the reaction was more like "Hey, HTML 5 doesn't say > anything about escaping <script>/<style>, does that mean that it doesn't > support escaped <script>/<style> and thus my pages will stop working in > browsers implementing HTML 5?". Hm. What should I say? I can't really work out what to say that doesn't sound really weird. > (FWIW, this: > > <script><!-- > document.write('</script>') > //--></script> > > ...works too and is allowed per HTML 5. Well, except that the written > </script> tag then results in a parse error.) True. I don't think we really want to be mentioning that though, since the <!-- and --> bits aren't just syntax -- they're also in the script. -- Ian Hickson U+1047E )\._.,--....,'``. fL http://ln.hixie.ch/ U+263A /, _.. \ _\ ;`._ ,. Things that are impossible just take longer. `._.-(,_..'--(,_..'`-.;.'
Received on Friday, 9 May 2008 09:37:59 UTC