|
|
|
|
|
|
by mercer
3475 days ago
|
|
|
That's just silly. Ultimately every tool outputs a 'string' that gets sent to the browser. What matters is how this happens, and there's a huge difference between React's approach and '<div class="whoops"><?php echo $some_unescaped_dangerous_thing ?></div>' |
|
|