Alex Brollo wrote:
I know python much better than PHP, so I feel myself reasonably comfortable with cgi python module dealing with simple tests of html queries. In the meantime, I'm worried abut possible safety issues, so what is your suggestion to fix any coding/setting mistake? Have I to publish here, or into toolserver wiki, my code? As you guess, I'm not so deep into such issues.
It's a bit unclear what you mean by safety issues. I'll assume you mean XSS vulnerabilities, SQL injection, etc.
It's rather simple, really: sanitize all input and all output. If you do that, it doesn't really matter how bad or ugly the HTML or CSS is.
You can read https://wiki.toolserver.org/view/Tool_considerations#Security which has a bit more information about tool security.
As you're working in PHP, you might also find http://www.mediawiki.org/wiki/Security_for_developers useful, though it's obviously targeted primarily at MediaWiki development.
You should set a default license for your tools/scripts using "setlicense" and then you can specify licenses for individual tool/scripts as necessary. There's a general expectation that the tools and scripts that you write will be released under a free/open source license, but I'm not sure if that's an actual requirement ("must") or simply an expectation ("should").
If you have specific questions, feel free to ask on this list or IRC.
MZMcBride