Hao Luo
Reputation: 1891
How to safely pass javascript around?
I'm creating an application where users can pass codes around. My question is how does sites like jsfiddle or jsbin ensure that the code people save and pass around to one another are not malicious to the receiving client?
Upvotes: 1
Views: 52
Answers (1)
alex
Reputation: 490433
They can't really. They run the code in an iframe in a way that it violates Same Origin Policy, to protect their own site. Other than that, it's at the end user's risk.
It's really the same as visiting any untrusted site on the internet in terms of security.
Upvotes: 5
Related Questions
- security considerations when using (end-user-defined) JavaScript code inside Java
- Javascript Security
- How to secure an app that allows users to insert JavaScript?
- Best way to privately scope Javascript?
- securing javascript source code
- How to protect my Javascript from being accessed by other parties?
- Improving security with JS
- Security in JavaScript Code
- Javascript: How to secure your code
- securing data used in java script file