Conjure 0.8.7 Released
20 views
Skip to first unread message
Matt
Jan 25, 2012, 10:24:09 AM1/25/12
to Conjure
Conjure 0.8.7 Released.
I found and fixed some issues causing page rendering to run very
slowly. In doing so, I removed hiccup and created a very similar page
rendering library called conjure_html. Conjure html is optimized for
the way Conjure renders pages. Also, in Conjure html, all strings are
automatically escaped. If you have a string you don't want escaped,
you'll need to convert it to a keyword using the 'keyword' function.
This should drastically reduce cross site scripting vulnerabilities
with only a slight performance hit.
Since clojure contrib xml has been removed and there is not a released
replacement yet, I've changed all xml rendering to use Conjure html as
well. This may cause issues if you're using the old xml-view macro. I
can't really do anything about this until data.xml is released.
-Matt Courtney
I found and fixed some issues causing page rendering to run very
slowly. In doing so, I removed hiccup and created a very similar page
rendering library called conjure_html. Conjure html is optimized for
the way Conjure renders pages. Also, in Conjure html, all strings are
automatically escaped. If you have a string you don't want escaped,
you'll need to convert it to a keyword using the 'keyword' function.
This should drastically reduce cross site scripting vulnerabilities
with only a slight performance hit.
Since clojure contrib xml has been removed and there is not a released
replacement yet, I've changed all xml rendering to use Conjure html as
well. This may cause issues if you're using the old xml-view macro. I
can't really do anything about this until data.xml is released.
-Matt Courtney
Pål de Vibe
Jan 25, 2012, 10:43:00 AM1/25/12
to clojure...@googlegroups.com
Great work Matt.
Pal
Reply all
Reply to author
Forward
0 new messages