On 2020-10-15 04:52, Ryan Sleevi wrote:
On Wed, Oct 14, 2020 at 7:31 PM Jakob Bohm via dev-security-policy <
dev-security-policy@lists.mozilla.org> wrote:
Only the CSV form now contains CSV artifacts. And it isn't really CSV
either (even if Microsoft Excel handles it).
Hi Jakob,
Could you be more precise here? Embedded new lines within quoted values is
well-defined for CSV.
Realizing that there are unfortunately many interpretations of what
“well-defined for CSV” here, perhaps you can frame your concerns in terms
set out in
https://tools.ietf.org/html/rfc4180 . This at least helps make sure we can
understand and are in the same understanding.
For example, embedded new lines are discussed in 2.6 and the ABNF therein.
The one difference from RFC4180 is that CR and LF are not part of the
alternatives for the inner part of "escaped".
Enjoy
Jakob
--
Jakob Bohm, CIO, Partner, WiseMo A/S. https://www.wisemo.com
Transformervej 29, 2860 Søborg, Denmark. Direct +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded
_______________________________________________
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy
