|
|
|
|
|
|
by bawolff
2339 days ago
|
|
|
Well the messed up if logic is definitely a cause, i think part of the cause is the pattern of just validating input is safe instead of validating input at ingestion time and escaping just before output (shell out) time. I think doing both is a much more secure pattern* *easy to sit here and armchair make claims of course. I've also only read this post and not the actual code so maybe there is reason for doing it how they did. I'd add for writing the fix domain logic, probably most clear to fix it in one step, and then do the validation as a second step, instead of mixing the two. Minisculey less efficient but its much easier to follow if fixing and validating logic aren't mixed together. |
|
|
I am going to guess they will be smart enough to redesign this for the next major release, and the current patch is just that, a patch for the old design.