OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index]
RE: [xml-dev] Maximally Consumable Data

Hi Rob,
> But, you have to 'eval' it making a 
> potential security threat.

In the book, Bulletproof Ajax, by Jeremy Keith, he says (p. 87):

"In order to extract the contents of a JSON object, it must be
evaluated.  The eval function is powerful, and potentially dangerous.
If you're retrieving JSON data from a third party that isn't entirely
trustworthy, it could contain some malicious JavaScript code that will
be executed with eval.  For this reason Douglas Crockford has written a
JSON parser that will parse only properties, ignoring any methods


[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index]

News | XML in Industry | Calendar | XML Registry
Marketplace | Resources | MyXML.org | Sponsors | Privacy Statement

Copyright 1993-2007 XML.org. This site is hosted by OASIS