django-webapp - Project Hosting on Google Code

Older Jul 28, 2008 issue 1 (Default json encoding insecure) commented on by craig.ogg - Sheesh, the default format should be None, not '%s' Sheesh, the default format should be None, not '%s' Jul 28, 2008 issue 1 (Default json encoding insecure) reported by craig.ogg - JsonResponse defaults to a format string of '/* %s /' which actually reduces security. A default format of simply '%s' would be more secure. There is a discussion of this in the dojo ticket tracker: http://trac.dojotoolkit.org/ticket/6380 JsonResponse defaults to a format string of '/ %s */' which actually reduces security. A default format of simply '%s' would be more secure. There is a discussion of this in the dojo ticket tracker: http://trac.dojotoolkit.org/ticket/6380

issue 1 (Default json encoding insecure) reported by craig.ogg - JsonResponse defaults to a format string of '/* %s */' which actually reduces security. A default format of simply '%s' would be more secure. There is a discussion of this in the dojo ticket tracker: http://trac.dojotoolkit.org/ticket/6380

JsonResponse defaults to a format string of '/* %s */' which actually reduces security. A default format of simply '%s' would be more secure. There is a discussion of this in the dojo ticket tracker: http://trac.dojotoolkit.org/ticket/6380

Older