25 Feb
2002
25 Feb
'02
11:34 p.m.
Jeff Epler
It means that you must audit not only your source code, but also your message catalogs, to determine whether information that is supposed to remain internal to a program is not formatted into a string. Of course, it is fairly easy to do this audit by showing that the translated string doesn't contain substitution on any identifiers that the original string did not.
That specific test could be done automatically. In fact, GNU msgfmt already performs the test for c-format strings; msgfmt.py should probably learn about the common notations for string interpolation. Regards, Martin