Shuang Rimu

A blog about random stuff

• Archives
• About
• Contact
• Licensing
• Tags
• FVWM
• Miscellaneous
• algorithm
• anitya
• christmas
• cmus
• composer
• computability_theory
• continuum_hypothesis
• debian
• django
• elm
• first
• fvwm
• goal
• hakyll
• haskell
• latex
• math
• mit
• model_theory
• moving
• nontechnical
• opencv
• packaging
• peano_axioms
• php
• python
• smbc
• vim
• xdebug
• xkcd

There have been many rants on the internet about PHP. This will not be another long rant. There have been many admirable ones already.

And besides, PHP, for all its faults, is the duct tape that holds the internet together.

I’m just here to vent about one thing. I’ve been doing a lot of code maintenance at work lately. I stumbled across PHP’s parse_str.

parse_str. Generates variables on the fly. Terrible. Terrible terrible terrible. I have variables whose very declaration ARE DEPENDENT ON USER-GENERATED INPUT. User comes up with creative URL query strings? I get creatively named variables. Magically. GAAAAAAHHHHHHH!

Lesson: ALWAYS use the optional array argument of parse_str or pain and agony will ensue.

All Materials on This Website Licensed under a CC-BY 4.0 International License unless otherwise indicated. Site proudly generated by Hakyll