search

speedmax / h2o-php

A beautiful template engine for PHP in Django style
http://www.h2o-template.org
270 stars 56 forks source link

autoescape all variable output #2

Open speedmax opened 15 years ago

speedmax commented 15 years ago

autoescape all variable output will improve security against XSS attacks and script injections.

original LH ticket

This ticket has 0 attachment(s).

speedmax commented 15 years ago

autoescape all variable output

This is part of 0.4 release

by Taylor luk