Comment by belter

Comment by belter 18 hours ago

0 replies

View on Hacker News

This pattern seems to be shown almost as a comprehensive security solution when it's really just one layer of defense. This parse dont validate has to be combined with resource limits, and other protective measures during the parsing phase itself.