- From: Tab Atkins Jr. <jackalmage@gmail.com>
- Date: Mon, 25 Jan 2010 17:47:42 -0600
On Mon, Jan 25, 2010 at 5:45 PM, Alex Russell <slightlyoff at google.com> wrote: > Sorry I'm late to this discussion. Would like to add my objection to > using attribute string escaping as a security "feature" in any way. I > strongly prefer required nonces attached to opening and closing of > sections. Do you have any suggestions on how to fix the issues that have already been raised against that? ~TJ
Received on Monday, 25 January 2010 15:47:42 UTC