W liście Mike Orr z dnia poniedziałek 06 lipca 2009: > However, Pylons' @jasonify raises a warning when converting a list, > citing this possible attack: > http://wiki.pylonshq.com/display/pylonsfaq/Warnings > > I'm not sure what's best in this case. You could ignore the warning, > or return a text file containing one state per line (with the first > word in the line being the ID). The attack is only possible if the list (array in JavaScript) is top-level object. So it is just enough to wrap the list in some object, eg: {'states': [...]}
-- Paweł Stradomski --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/pylons-discuss?hl=en -~----------~----~----~----~------~----~------~--~---
