Y
Hacker News
new
|
ask
|
show
|
jobs
by
mibbitier
5004 days ago
That jQuery code is so horrible. What about if CANVAS_WIDTH is from an insecure source? Maybe someone sets it to include some of its own <script> tags or other tomfoolery.
HTML shouldn't feature in javascript code IMHO.