Simon Willison’s Weblog


6 items tagged “validation”


minixsv (via) As far as I can tell, this is the only library that can validate XML using pure Python (no C extension required). I’d be extremely happy if someone would write a pure Python library (or one that only depends on ElementTree, which is included in the standard library) for validating XML against a Relax NG Compact syntax schema. Even DTD validation would be better than nothing! # 12th August 2009, 4:59 pm


Evil GIFs: Partial Same Origin Bypass with Hybrid Files. First there were PNGs that had crossdomain.xml files embedded in them, now there are GIFs that contain Java applets (as JAR files). At this point I’d say don’t even bother trying to validate uploaded files, just make sure they’re served off an entirely different domain instead where XSS doesn’t matter. # 1st July 2008, 8:58 am

For the record, my site is valid HTML 5, except the parts that aren’t. My therapist says I shouldn’t rely so much on external validation.

Mark Pilgrim # 10th March 2008, 2:01 pm

JavaScript: It’s Just Not Validation! I like the explanation of JavaScript as offering input assistance rather than validation. # 1st January 2008, 12:07 pm


jQuery plugin: Validation. Pretty clever way of attacking the client-side form validation problem; supports both configuration object literals and custom attributes on the form fields themselves. # 30th June 2007, 10:26 pm


Keep your JSON valid

I’m a big fan of JSON, and it’s great to see it turning up as an output option for so many Web APIs. Unfortunately, many of these APIs are getting the details slightly wrong and in doing so are producing invalid JSON.

[... 311 words]