SPC020220: Do not call 'HttpUtility.HtmlEncode'.

The assembly should not call HttpUtility.HtmlEncode(string) to encode strings. Use 'SPHttpUtility.HtmlEncode' instead.

TypeName: DoNotCallHttpUtilityHtmlEncode
CheckId: SPC020220
Severity: CriticalWarning
Type: AssemblyFileReference

Remove calls to 'HttpUtility.HtmlEncode'. The .NET Framework HttpUtility encoding library does not encode all characters sufficiently. For example, SPHttpUtility in SharePoint encodes a single quotation mark as ' but .NET Framework HttpUtility does not encode the single quotation mark.


comments powered by Disqus