Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
statictype
on Aug 10, 2010
|
parent
|
context
|
favorite
| on:
I made a browser-based chat app. Based on node.js ...
Interesting because injecting script tags shows them properly escaped but also seems to be evaluating them. Not sure how both can happen at the same time.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search: