Re: An argument against mark_safe.

On Thu, Oct 17, 2013 at 10:06 AM, Daniele Procida wrote: > On Wed, Oct 16, 2013, Jonathan Slenders wrote: > >>Some people still have javascript in their templates and they use template >>tags inside their javascript. :( > > I am not sure if you're

Re: An argument against mark_safe.

Personally I tend to attach data attributes to the wrapping node for the map/chart at HTML escaped JSON and then read them from an external JS file. Especially as that js can be fairly complex it's best to keep it outside the template where it can be compressed. But we digress. I'm in favour of

Re: An argument against mark_safe.

On Wed, Oct 16, 2013, Jonathan Slenders wrote: >Some people still have javascript in their templates and they use template >tags inside their javascript. :( I am not sure if you're saying this is a bad thing, but it is unavoidable, isn't it? For example I use the

Re: An argument against mark_safe.

On Thu, Oct 17, 2013 at 3:30 AM, Jonathan Slenders < jonathan.slend...@gmail.com> wrote: > Currently, on python-ideas there is a discussion going on about taint > tracking in Python. It's tracking data that come from untrusted sources and > preventing it from being used in sensitive places. This

An argument against mark_safe.

Currently, on python-ideas there is a discussion going on about taint tracking in Python. It's tracking data that come from untrusted sources and preventing it from being used in sensitive places. This video [1] from last year explains the problems very well. In noticed that we can do