user1901389
Reputation: 5
What can I do to validate my code error
What can I do to make sure my code is secure? My add-on from Mozilla was validated, but apparently this line was unsecure:
if (p.getElementById("bluebarholder"))
p.getElementById("top").setAttribute('onclick', 'window.open("http://www.facebook.com","_self")');
I don't know whats the issue or how to solve it as they haven't replied to my message yet.
Upvotes: 0
Views: 41
Answers (1)
SLaks
Reputation: 887777
This is an example of "eval is evil".
You're passing a string as an event handler, forcing the browser to fire up a Javascript parser to evaluate the string.
Instead, you should call addEventListener to add a function as a handler.
Upvotes: 1
Related Questions
- Javascript Firefox errors
- Bugs while debugging firefox addon- Unchecked lastError value: Error
- NS_ERROR_FAILURE
- Need help to fix mozilla addon
- my very simple firefox addon doesn't work, what I do wrong here?
- JQuery in Firefox Addon causes multiple warnings
- Firefox add-on validation gives document.write & innerHTML error
- Javascript: Firefox, why this error?
- Why do I get no source for error in Firefox
- javascript reference to undefined property