A recent post on the Planet-Websecurity.org blog got me interested in Inspekt. It's a secure input validation library for PHP. It reminds me a bit of Perl's taint switch, in that Inspekt prevents you from directly using $_POST, $_GET, and their ilk.
Looks like it hasn't really hit release status yet, but I think it's going to be worth watching.
No comments:
Post a Comment