Python
/
Strings
- 1 Language 9
-
Hello World S
-
Variables S
-
Functions S
-
Conditional A S
-
Operators S
-
While S
-
Turtle S
-
Script Mode S
-
Debugging S
- 2 Strings 7
-
Slice S
-
Raw Strings S
-
Regex A S
-
Validation S
-
Config S
-
Security S
-
Encrypt A S
- 3 Collections 5
-
Lists S
-
Dictionaries S
-
Efficiency S
-
Tuples S
-
References S
- 4 Functions 5
-
Recursion S
-
Factorial S
-
Modulus S
-
Reassignment S
-
Approximate S
- 5 Storage 8
-
Files S
-
Databases S
-
Pipes S
-
With open S
-
Shelve A S
-
Zip S
-
Csv S
-
Json S
- 6 Class 4
-
Definition S
-
Attributes S
-
Functional S
-
Methods S
- 7 Goodies 5
-
Conditional Expression S
-
List Comprehension A S
-
Generator S
-
Named Tuple S
-
Modules S
- 8 Applications 5
-
Pythagora A S
-
Palindrome A S
-
Binary Search A S
-
Conway Game A S
-
Coin Flip A S
- 9 Scheduler 4
-
Time S
-
Multithreading A S
-
Subprocess S
-
Logging S
- 10 Packages 6
-
Clipboard A S
-
Ocr A S
-
Socket S
-
Image S
-
Virtualenv S
-
Jupyter S
S
R
Q
Python Strings Security
Prevent XSS with html.escape() Sax library escape(), faster import html s = html.escape(s)
Escape
Prevent xss attacks with html escape.
""" XSS
Prevent cross site scriting attacks
Escape html tags with html library
"""
import html
a = """& < " ' >"""
x = html.escape(a)
b = "<script>alert('hack');</script>"
y = html.escape(b)
print(x) # & < " ' >
print(y) # <script>alert('hack');</script>
XML
The sax library escape should execute faster.
""" XSS
Prevent cross site scriting attacks
The sax library escape should execute faster
"""
from xml.sax.saxutils import escape
from xml.sax.saxutils import quoteattr
a = '< & >'
x = escape(a)
b = "a ' b"
y = quoteattr(b)
assert x == '< & >'
assert y == '"a \' b"'
print('pass')
➥ Questions
Last update: 124 days ago