Talk:Opa (programming language)

From Wikipedia, the free encyclopedia
Jump to: navigation, search
WikiProject Computing  
WikiProject icon This article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of computers, computing, and information technology on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.
 ???  This article has not yet received a rating on the project's quality scale.
 ???  This article has not yet received a rating on the project's importance scale.
 
WikiProject Software / Computing   
WikiProject icon This article is within the scope of WikiProject Software, a collaborative effort to improve the coverage of software on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.
 ???  This article has not yet received a rating on the project's quality scale.
 ???  This article has not yet received a rating on the project's importance scale.
Taskforce icon
This article is supported by WikiProject Computing.
 

XSS and Sql injection protection by having strong static typing?[edit]

Opa implements strong, static typing, which can be helpful in protecting against security issues such as SQL injections and cross-site scripting attacks.[1]

are you ******* kidding me? the type system of the scripting language has absolutely nothing to do with how vulnerable the script is to SQL injection, or how vulnerable the site is to XSS (regardless of type system of the language, an unsanitized sql query is still an unsanitized sql query, and unsanitized text is still unsanitized text (that can include HTML/javasript/whatever for xss)) Divinity76 (talk) 07:35, 3 March 2013 (UTC)

newbie question: native code, node.js[edit]

At the moment the article says these two things:

"...programs are written in Opa and subsequently compiled to native code on the server..."

"Code written in Opa is compiled to JavaScript using Node.js on the server side..."

Is this a correct use of the term "native code" ?

Thanks.

24.215.168.62 (talk) 21:58, 27 April 2013 (UTC)

  1. ^ Robertson, William; Giovanni, Vigna (2009). "Static Enforcement of Web Application Integrity Through Strong Typing". SSYM'09 Proceedings of the 18th conference on USENIX security symposium.