Republished with Permission - Original Article
In addition to blogging, I am also now using Twitter for
quick updates and to share links. Follow me at: twitter.com/scottgu]
This is the nineteenth in a series of blog posts I’m doing on the upcoming VS 2010 and
.NET 4 release.
Today’s post covers a small, but very useful, new syntax
feature being introduced with ASP.NET 4 – which is the ability to automatically
HTML encode output within code nuggets. This helps protect your
applications and sites against cross-site script injection (XSS) and HTML
injection attacks, and enables you to do so using a nice concise syntax.