perl and ruby have "taint" which is similar to what you describe. And yes, this ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		riffraff on April 29, 2014 \| parent \| context \| favorite \| on: Exec($_GET perl and ruby have "taint" which is similar to what you describe. And yes, this can be encoded in the type system and you can also make it so the sanitization is context dependent, i.e. http://www.comp.nus.edu.sg/~prateeks/papers/csas-ccs11.pdf

jonnyscholes on April 29, 2014 [–]

PHP does to http://pecl.php.net/package/taint but I haven’t used it or the perl/ruby ones so I'm not actually sure how similar they are...

hellerbarde on April 30, 2014 | [–]

How ironic.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact