|
|
|
|
|
|
by throwaway_2047
1810 days ago
|
|
|
Exactly my thought. My theory is that dev nowadays grow up in SPA/mobile client era and they are rediscovering what html was meant to be 20 years ago. I once wanted my SPA to render html directly by fetching the html from my trusted backend and shoving its response directly into a react component using dangerouslySetInnerHTML. One dev told me, "wait, you are opening door for XSS!" |
|
|