How should < + / + Letter appearing in script source be handled?
Currently, detection is not attempted, nor is any attempt made to hide such constructs. This sequence marks the end of a CDATA section in SGML and, thus is invalid HTML. One option is to hide the script source within HTML comments (within script comments, within the CDATA section). Another is to emit an error if such a sequence is detected. The problem with emitting an error is that user intervention is required. The problem with HTML comments is that it only works for IE and is complicated to implement correctly for multiple scripting languages which leads us to … • What scripting languages should be supported? It has been suggested that CDATA escaping support for all scripting languages besides Javascript be dropped to make hiding logic described above a tractable proposition. Currently, Javascript, JScript, ecmascript and VBScript are supported. Other candidates include perlscript and ruby. • What XML processors should be supported? The whole purpose of CDATA escaping is for XML c