No Compromises

Understanding how Stringable works inside Blade views

Listen Later

Joel and Aaron dig into Laravel’s `Stringable` class and uncover how it can silently skip Blade’s automatic HTML escaping. They explain why that’s both a convenient feature and a potential security pitfall if user input isn’t properly sanitized. You’ll hear practical ways to keep your views safe without losing the API’s fluency.

  • (00:00) - Stringable can sidestep Blade escaping
  • (03:45) - Dangers of outputting unsanitized HTML
  • (05:45) - Defensive strategies for safe rendering
  • (08:45) - Silly bit

    • Sign up for a short, but useful, Laravel tip each day in our newsletter
    ...more
    View all episodesView all episodes
    Download on the App Store
    No CompromisesBy Joel Clermont and Aaron Saray
    • 4.9
    • 4.9
    • 4.9
    • 4.9
    • 4.9

    4.9

    8 ratings

    More shows like No Compromises

    View all
    The Laravel Podcast by Taylor Otwell, Matt Stauffer

    The Laravel Podcast

    59 Listeners

    Startups For the Rest of Us by Rob Walling

    Startups For the Rest of Us

    701 Listeners

    Connected by Relay FM

    Connected

    568 Listeners

    Laravel News Podcast by Jacob Bennett and Michael Dyrynda

    Laravel News Podcast

    56 Listeners

    The Laracasts Snippet by Jeffrey Way

    The Laracasts Snippet

    76 Listeners

    North Meets South Web Podcast by Jacob Bennett and Michael Dyrynda

    North Meets South Web Podcast

    24 Listeners

    Syntax - Tasty Web Development Treats by Wes Bos & Scott Tolinski - Full Stack JavaScript Web Developers

    Syntax - Tasty Web Development Treats

    985 Listeners

    No Plans to Merge by Daniel Coulbourne & Caleb Porzio

    No Plans to Merge

    50 Listeners

    Notes On Work - by Caleb Porzio by Caleb Porzio

    Notes On Work - by Caleb Porzio

    17 Listeners

    The Rest Is History by Goalhanger

    The Rest Is History

    14,769 Listeners

    Mostly Technical by Ian Landsman and Aaron Francis

    Mostly Technical

    26 Listeners

    Talking Businessly by Daniel Coulbourne & John Drexler

    Talking Businessly

    2 Listeners

    The Business of Laravel by Matt Stauffer

    The Business of Laravel

    7 Listeners

    Slightly Caffeinated by Chris Gmyr, TJ Miller

    Slightly Caffeinated

    0 Listeners

    The Panel by Justin Jackson & Brian Casel

    The Panel

    4 Listeners