[Koha-devel] Huge performance issue cause by bug 13618 (XSS)
Renvoize, Martin
martin.renvoize at ptfs-europe.com
Thu Feb 11 08:19:58 CET 2016
Interestingly enough there was recently a long debate about xss escaping
over in the Mojo irc channel. They obviously have their own temptation
engine which uses Mojo::DOM in parts (which includes the xss_escape code).
I'm envisioning the we'll end up needing to do that digging into
Template::Stash::AutoEscaping and would suggest whoever does perhaps bases
some enhancements on the mojo code ;-)
For reference: http://irclog.perlgeek.de/mojo/2016-02-09#i_12010985 ,
https://github.com/kraih/mojo/commit/ccbd7e92ffe2029e83f14e077095d6ddda27cd1c
Martin
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.koha-community.org/pipermail/koha-devel/attachments/20160211/c4518579/attachment.html>
More information about the Koha-devel
mailing list