Den 2019-10-06 kl. 15:41, skrev Mark Randall:
On 06/10/2019 14:18, Reinis Rozitis wrote:
Since `` are used for literal strings (for poorly chosen reserved
words as field, table names (which happens from time to time)) in
MySQL (multiline) queries I doubt there is a simple way to
distinguish and replace everything to exec().
Hi,
As the RFC states, there are already widely used tools available which
can do this reliably:
https://github.com/FriendsOfPHP/PHP-CS-Fixer
backtick_to_shell_exec
--
Mark Randall
Even if there are good tools, there is a cost in doing the upgrade
not just for doing the coding work, but also testing. Assume we
have legacy code that works perfectly, so what is then the benefit
to upgrade unless it goes in together with other features?
Motivating to get a small budget to fix this in small company is
not obvious. The purity of PHP won't fly I think ;-)
r//Björn L
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
