Open GoogleCodeExporter opened 9 years ago
Original comment by bskin...@google.com
on 20 Jun 2011 at 5:45
Original comment by bskin...@google.com
on 20 Jun 2011 at 5:46
Original comment by bskin...@google.com
on 20 Jun 2011 at 7:43
Decided to leave this as is for now. We are embedding the user-entered
nickname strings within the JavaScript on this page, which is safe so long as
we are sure we restrict what characters can be in the nickname, which we do in
the ProfileServlet, using the TextValidator.
Original comment by bskin...@google.com
on 27 Jun 2011 at 8:35
Original issue reported on code.google.com by
bskin...@google.com
on 19 May 2011 at 8:48