Y
Hacker News
new
|
ask
|
show
|
jobs
by
benhoyt
1643 days ago
Fair enough on that part. But it's the "their inputs" part that's just as problematic: whatever massaging you do to your "inputs", they'll always be unsafe in some contexts. You need to encode/escape your
output
.