On Tuesday 13 September 2016 at 12:45, Daniel Bünzli wrote: > On Tuesday 13 September 2016 at 12:34, David Sheets wrote: > > Could you please elaborate on the design problem? > > > > http://mjambon.com/yojson.html > > "Note that yojson never checks the encoding of strings." But maybe if you call your module Safe, it is; Yosjon.Safe.of_string. After all insecurity is only a feeling. It's hilarious.
Frankly simply don't use the wrong tools; I don't claim there are no bugs in jsonm but at least it doesn't try to be insecure by design. I think that if you are implementing security infrastructure you should be careful about these details; as far as I'm concerned not doing so casts some doubts on your ability to actually implement these things. Daniel _______________________________________________ opam-devel mailing list opam-devel@lists.ocaml.org http://lists.ocaml.org/listinfo/opam-devel
