Hi All - Apologies if this is a topic that’s been addressed elsewhere (I didn’t find it). When you add javascript to a theme, does Discourse provide protections so that you are not exposing your site to security issues?
Thanks!
1 Mi Piace
No, Discourse doesn’t apply any kind of sanitisation to theme javascript. It’s very important that you trust the authors of any themes you install.
2 Mi Piace