if I am not mistaken eval executes valid code in a given string
eval("alert('hey')");
and
setTimeout("alert('hey')",1000);
does just about the same thing, only with a timer. is set timeout just as risky as eval?
views:
78answers:
2
A:
Because when people say "eval", they mean "eval and any function that is more or less equivalent to eval", but the former is much shorter to say. So the answer to your question is yes, it is as risky.
erikkallen
2010-08-16 09:43:08
+8
A:
I'd say you hear the same objections. setTimeout (with string and not function parameters) is pretty much the same as eval.
If possible,
setTimeout(function(){ alert ("hey") ; }, 1000);
Thilo
2010-08-16 09:43:14
No reason it shouldn't be possible
George Jempty
2010-08-16 09:45:37
+1 for providing an example of the proper use of `setTimeout`. The ability to pass a string argument has probably done more harm than good to how people use javascript
David Hedlund
2010-08-16 09:46:00
+1 Looks like my code needs some security changes ;) thanks, hmm I was not exactly aware that you can use timeouts this way as well hmmm
Akay
2010-08-16 09:46:54