Hi, I want to make sure the UI code is free of XSS issues. I read the doc about SCE and it seems to be a great tool for eliminating XSS. But for some reason my UI guy wants to disable SCE, so I am thinking whether I can achieve the same goal using ngSanitize by making sure everything is sanitized by ngSanitize. Assuming I do not need to allow any scripting in my app, will that be sufficient? Generally, what are the different scenario which SCE and ngSanitize can be used (together or not) to make the code free of XSS.
Thanks a lot. Clement -- You received this message because you are subscribed to the Google Groups "AngularJS" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/angular. For more options, visit https://groups.google.com/groups/opt_out.
