Use func_get_arg(0) vs $template

slimphp / PHP-View

A Simple PHP Renderer for Slim 3 & 4 (or any other PSR-7 project)

MIT License

263 stars 60 forks source link

Closed pmjones closed 7 years ago

pmjones commented 7 years ago

This makes it more-obvious to casual reviewers that $template cannot be replaced by the extract() call, and thus is not a security vulnerability.

akrabat commented 7 years ago

Interesting side-note. Travis isn't set up for this repo?!

akrabat commented 7 years ago

Thanks Paul!

pmjones commented 7 years ago

One is happy to be of service. :-)