Re: Script Stripper

@foo{ qw/a b c/ }++ on an empty %foo, will have $foo{a} be 1 and $foo{b} and $foo{c} be undef. That's no problem, because it's only being used for exists. You can have $foo{a} be undef too, by assigning an empty list to the hash splice: @foo{ qw/a b c/ } = ()

By the way, think about these:

<style> span.blah { background-color: expression(alert('Hello, World!'
+)) } </style>
<a href="javascript:alert('Hello, World!');">hi mom</a>
<img src="fourohfour" onerror="alert('Hello, World!');">
[download]

It may be better to define what IS allowed, instead of what's NOT. HTML changes continuously, and browsers don't always follow specs...

For the quotes: just use HTML::Entities, and have it change double quotes to &quot;, zo you can safely use double quotes.

2;0 juerd@ouranos:~$ perl -e'undef christmas'
Segmentation fault
2;139 juerd@ouranos:~$
[download]

Comment on Re: Script Stripper Select or Download Code

Replies are listed 'Best First'.
Re: Re: Script Stripper by japhy (Canon) on Dec 26, 2001 at 09:58 UTC
Long live Perl 6. `%hash{qw(a b c)} ^= 1; # or maybe... %hash{qw(a b c)}^++;` [download] _____________________________________________________ Jeff`[japhy]`Pinyan: Perl, regex, and perl hacker. `s++=END;++y(;-P)}y js++=;shajsj<++y(p-q)}?print:??;`	[reply] [d/l]
Re: Re: Re: Script Stripper by Juerd (Abbot) on Dec 26, 2001 at 11:21 UTC
Perl6 will indeed be great. But undef values are sufficient in this case ;) `2;0 juerd@ouranos:~$ perl -e'undef christmas' Segmentation fault 2;139 juerd@ouranos:~$` [download]	[reply] [d/l]