Skip to content

Lib html

Jump to bottom Edit New page
kud1ing edited this page May 6, 2013 · 16 revisions

A library/module for escaping of HTML characters.

1. Announcement to mailing list

  • Proposed editor: your name
  • Date proposed: date of proposal
  • Link: link to email

Notes from discussion on mailing list

  • note
  • note
  • note

2. Research of standards and techniques

  1. Standard: standard - link to docs - ...
  2. Standard: standard - link to docs - ...
  3. Technique: technique - link to docs - ...
  4. Technique: technique - link to docs - ...

Summary of research on standards and leading techniques

Relevant standards and techniques exist?

Those intended to follow (and why)

Those intended to ignore (and why)

3. Research of libraries from other languages

  1. Language: Go - html
    • EscapeString() escapes only five characters: <, >, &, ' and "
    • UnescapeString() unescapes more characters

Summary of research from other languages:

Structures and functions commonly appearing

Variations on implementation seen

Pitfalls and hazards associated with each variant

Relationship to other libraries and/or abstract interfaces

4. Module writing

  • Pull request: link to bug

Additional implementation notes

  • provide a escape_basic() that only escapes the necessary characters for security/forms/URLs
  • provide a escape_full() that escapes all characters
    • We probably should use a table-lookup (binary search), similar to the code in libcore/unicode.rs
Add a custom footer

All Categories:

Clone this wiki locally