|
|
|
|
|
|
by JoshTriplett
3464 days ago
|
|
|
> If you were writing a database library in say Java, how would you know or prevent the user passing you a concatenated string over a string literal? Extend the language to detect passing a string literal to certain functions or macros. Rust does this for macros that take a format string, like "println!" and "format!". GCC can do this for printf as well. And Perl has taint checking. |
|
|