A critique of cgi.escape
Lawrence D'Oliveiro
ldo at geek-central.gen.new_zealand
Tue Sep 26 20:40:31 EDT 2006
In message <mailman.674.1159276196.10491.python-list at python.org>, Fredrik
Lundh wrote:
> Lawrence D'Oliveiro wrote:
>
>>> (cgi.escape(s, True) is slower than cgi.escape(s), for reasons that are
>>> obvious for anyone who's looked at the code).
>>
>> What you're doing is adding to the reasons why the existing cgi.escape
>> function is stupidly designed and implemented. The True case is by far
>> the most common
>
> really? most HTML attributes cannot even contain things that would need
> to be escaped...
Are you really serious about that?
More information about the Python-list
mailing list