warnings still exist after using Encoder.XmlEncode

Oct 21, 2011 at 8:39 PM

I tried adding the AntiXss 4.0 to my project and did the following:


// AntiXss Encode the String.

var secureTaxEntrySet = Microsoft.Security.Application.Encoder


 XmlDocument taxEntrySetXml = new XmlDocument





This still showed the warnings. However if I change the above to the deprecated method, it vanishes...

var secureTaxEntrySet = Microsoft.Security.Application.AntiXss.XmlEncode(taxEntrySet);

Any idea what i am doing wrong? Is it an old version of Code Analysis tools? Where can i get the latest official version.