this post was submitted on 13 Jun 2023
1 points (100.0% liked)

/kbin meta

25 readers
1 users here now

Magazine dedicated to discussions about the kbin itself. Provide feedback, ask questions, suggest improvements, and engage in conversations related to the platform organization, policies, features, and community dynamics. ---- * Roadmap 2023 * m/kbinDevlog * m/kbinDesign

founded 2 years ago
1
Is there a list of what JavaScript works in magazines? (kbin.social)
submitted 2 years ago by EnglishMobster@kbin.social to c/kbinMeta@kbin.social
0 comments fedilink hide all child comments
 

I'm surprised to see a magazine can inject custom JavaScript at all - it seems neat, but also if left unmanaged it could be a disaster waiting to happen (session hijacking, putting ads into feeds, crypto mining, etc.).

I just tried adding alert('Hello world!'); to the JavaScript section of my test magazine and nothing happened, though - which leads me to believe there may be some allowlist of what JavaScript is and isn't okay.

Is that documented anywhere?

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here