I know that & lt;%: html.encode talks, but when I'm sure there are many situations I do not have to encode, so why should I waste time on the encoding stuff I'm 100% sure it does not need to be encoded like and lt;%: Url.Action ("index") . % & Gt; or & lt;%: Model.Id%> & gt; (type is of int)?
Personally I only use stuff that I know needs encoding .
Comments
Post a Comment