From art.home at gmail.com  Wed Oct 24 19:46:06 2018
From: art.home at gmail.com (Art O Cathain)
Date: Wed, 24 Oct 2018 20:46:06 +0100
Subject: JEP-326: Adding "escape()" and "unescape()" to java.lang.String
Message-ID: <CADB0Z-4v8AqaYpYo96xeAkqXKtWWEuE39Gbd3egqX-nQjdgjtw@mail.gmail.com>

I wonder at the wisdom of adding methods with such broad names to a
fundamental type such as String. Developers are confused enough about
escaping HTML and SQL - there is danger they'll simply concatenate
some strings together, then call "escape()" and go home for the day,
thinking their code is now secure.

Is there a more appropriate pair of names that indicates the type of
escaping that will be performed?

Art O Cathain