Talk:CSV to HTML translation: Difference between revisions
Content added Content deleted
(use Caja to embed html safely) |
(→{{header|TXR}}: Moving comment to talk page.) |
||
Line 20: | Line 20: | ||
:::::: But well do not hesitate to remove any of these screenshots. [[User:Blue Prawn|Blue Prawn]] 02:48, 14 November 2010 (UTC) |
:::::: But well do not hesitate to remove any of these screenshots. [[User:Blue Prawn|Blue Prawn]] 02:48, 14 November 2010 (UTC) |
||
:: Displaying someone else's HTML without excessive stripping or vulnerability is just what [http://code.google.com/p/google-caja/ Caja] is for. Web-service and Java interfaces are available. —[[User:Kevin Reid|Kevin Reid]] 23:16, 14 November 2010 (UTC) |
:: Displaying someone else's HTML without excessive stripping or vulnerability is just what [http://code.google.com/p/google-caja/ Caja] is for. Web-service and Java interfaces are available. —[[User:Kevin Reid|Kevin Reid]] 23:16, 14 November 2010 (UTC) |
||
==TXR comment== |
|||
''I moved this comment by [[user talk:24.85.131.247]] from the task page as it fits better here. --[[User:Paddy3118|Paddy3118]] 08:48, 24 September 2011 (UTC)'' |
|||
:We need some intelligently implemented way of escape filtering that doesn't get in the user's way. |
|||
:For instance, some syntax inside @(collect) could assert that all substitutions undergo HTML escaping, so this doesn't have to be propagated into every single occurrence of every variable. |
|||
:Associating some filtering with an input stream would be useful also. |