Re: Java f'in script !
"Have you ever heard the saying that security should be built in from the start? Where was that in your list of requirements?"
Client side scripting is not insecure or else the vast majority of sites written in the last 5 years would be insecure. You can create insecurity in your site, but that is not because it uses client side scripting. It is just, if not more, likely to happen from a back end dev who used concatenated SQL statements for user input rather than stored procedures.