incrediBILL - 5:43 am on Nov 18, 2011 (gmt 0)
Don't see how this would be any different if you were to roll your own.
When you roll your own:
a) the hackers don't have source code to review and...
b) there aren't any generic footprints to find using SEs and...
c) if you find a problem, you can probably fix it quickly without waiting on someone else to make a patch!
That good old security through obscurity, it does work for the most part.
Smarty, as popular as it may be, still has too much crap in the template for my tastes.
Been working with templates for years that were really abstracted at a high level from the code. Not sure at this stage in the game I can stomach going to what I consider a hiuge backwards.
Not that I won't keep an open mind, but I'm not happy with it so far.