Re: [PEAR-DEV] On the use of eval() in XML_Query2XML :: ASPN Mail Archive

Recent Messages
List Archives
About the List
List Leaders
Subscription Options

View Subscriptions
Help

View by Topic
ActiveState
.NET Framework
Open Source
Perl
PHP
Python
Tcl
Web Services
XML & XSLT

View by Category
Database
General
SOAP
System Administration
Tools
User Interfaces
Web Programming
XML Programming

MyASPN >> Mail Archive >> pear-dev

pear-dev

Re: [PEAR-DEV] On the use of eval() in XML_Query2XML
by Alexey Borzov other posts by this author
Oct 30 2006 4:23AM messages near this date

RE: [PEAR-DEV] On the use of eval() in XML_Query2XML | [PEAR-DEV] final alpha version of PEAR 1.5.0

Hi,

Lukas Feiler wrote:
>  recently I stumbled across the EvalForbiddance RFC

The RFC was not accepted, it wasn't even called for votes. Therefore you aren't 
of course required to conform to it.

It is not a good idea to abuse eval(), though, but if you aren't using it with 
user input and take measures to properly escape the strings, it is mostly OK.

>  (http://pear.php.net/pepr/pepr-proposal-show.php?id=288). It turns out that
>  XML_Query2XML (I'm the lead developer for that package) uses eval() in a
>  couple of places:

-- 
PEAR Development Mailing List (http://pear.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Thread:

Lukas Feiler

Justin Patrin

Lukas Feiler

Alexey Borzov