Hacker News new | past | comments | ask | show | jobs | submit login

I've had to do a bit of sanitizing input and parsing HTML documents "for real" at my job. It's not a primary duty, of course, but it comes up now and then. It seems like a reasonable test for "can they actually write some code to a well-defined spec," although probably not a great test for "are they good at working on a team and architecting bigger projects."

This is also a practice that is extremely easy to teach and fix.

But can be very costly to your business.

SQL Injection--not html parsing ;)

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact