April 2017
Intermediate to advanced
454 pages
12h 51m
English
Content preview from Vue.js 2 Cookbook
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
How it works...
Outputting raw HTML in general is very dangerous. Explaining web security is beyond the scope of this book, but just to get the idea, imagine that you have a comments section in your website, and that someone puts an <img> in a comment. If you were to interpret that as HTML and display it to other users, you could make your users download an image they don't necessarily want; if the image is not yours, you may be charged for bandwidth you didn't plan. Now you can expand this reason. If a user puts a <script> in the comment, this poses a greater risk as scripts can do almost anything.
Vue, by default, avoids the problem altogether by not letting you output HTML by default; that's why we need the special v-html directive to ...