On 10/10/07, Andy Armstrong <[EMAIL PROTECTED]> wrote: > Here's something I've been mulling for probably about eight years > without doing anything about it. > > Particularly in web applications - but in other areas too - people > regularly make a complete mess of escaping / unescaping strings. [...]
What worries me about this is duplication of code. CGI.pm has code to do URI and HTML escaping. DBI/DBD modules take care of SQL escaping. Any other type of escaping is probably already taken care of by some other module for that application. Now, if your module just acts as a sort of "clearing house" for those other escape methods, then that might be OK. But I'm very leery of the idea that you may be copying the code from those modules (or writing equivalent code).
