Published 2005-07-23 00:00:00
After seeing quite a few "fixed XSS problem" cvs commits on the mailing lists, I finally remembered that a release of Flexy was overdue. The thought, "that would not have happened if they had used flexy" came to mind a bit too often.. Flexy is designed to be safe by default (like a
firewall where you have to try hard to open ports)
HTML_Template_Flexy has not had much added to it in the last 6 months, probably as it just 'works', tries not to get in your way, or do to much.. But there have been a few bugs left over from the last release in January, along with a few tiny feature requests. So I finally got round to tidying up a release.
There is nothing mind shattering in this release, But users and potential users may be interested in the extra pages in the
manual. They should come online by monday:
- flexy:nameuses
- flexy:tojavascript jsvar="phpvar"
Along with a pretty complete list of configuration options that I updated a few weeks ago.
As far as I know there is not to much more missing.. but some of these are a bit critical
- {_( translation markers )_} , and how to use the translation toolkit.
- flexy:raw="somevar" for putting text within tags (as otherwise the syntax would break HTML editors.)
- Using some of the modifiers from the Savant Plugin (hint {xxx():numberformat}
I'm sure there is more, but that's all I could think of at present..
