Use of implied eval can compromise site security

Use of implied eval, and eval type functions causes severe security cross site scripting attack loopholes, on the site

CheckId	SPC028902
TypeName	ImpliedEvalEvil
Severity	Error
Type	JavaScriptFile

Resolution

Bad Practice

setTimeout("alert('Hi!');", 100);

Good Practice

setTimeout(function() {
alert("Hi!");
}, 100);

See also

Disallow Implied eval() (no-implied-eval)

Message Suppression

SharePoint Customization Analysis Framework (SPCAF), 7.15.0.0

Disclaimer: The views and opinions expressed in this documentation and in SPCAF do not necessarily reflect the opinions and recommendations of Microsoft or any member of Microsoft. SPCAF and RENCORE are registered trademarks of Rencore. All other trademarks, service marks, collective marks, copyrights, registered names, and marks used or cited by this documentation are the property of their respective owners.