Y
Hacker News
new
|
ask
|
show
|
jobs
by
ineedasername
1644 days ago
I've pretty much always taken 'sanitize' as a catch-all for all of the things you need to do.
1 comments
benhoyt
1644 days ago
Fair enough on that part. But it's the "their inputs" part that's just as problematic: whatever massaging you do to your "inputs", they'll always be unsafe in some contexts. You need to encode/escape your
output
.
link