__proto__ : Spec & web compatibility

Brendan Eich brendan at mozilla.com
Thu Aug 22 02:54:37 PDT 2013


Just a flesh wound :-P.

Do bugs of this dictionary kind (real user input including __proto__ is an attack, and no joke, I agree) change the argument about non-object RHS? My point is we're still alive (somehow) and stuck with annex B specification.

/be

On Aug 22, 2013, at 2:35 AM, Andreas Rossberg <rossberg at google.com> wrote:

> On 22 August 2013 02:44, Brendan Eich <brendan at mozilla.com> wrote:
>> I implemented __proto__ ages ago and it caught on like a non-lethal social
>> disease, and that's how it works. The way it works ought to be how Annex B
>> specifies it.
> 
> It has occasionally been quite lethal to a number of web pages that
> carelessly used plain objects as maps. :-P
> 
> /Andreas


More information about the es-discuss mailing list