infinite-scroll icon indicating copy to clipboard operation
infinite-scroll copied to clipboard
verified publisher icon metafizzy

[Feature Request] Secure Only Mode

Open Archmonger opened this issue 5 years ago • 0 comments

Currently, InfiniteScroll allows for external scripts within embedded content.

Would be nice to have a "secure only" mode parameter, which passes all html through DOMPurify before calling innerHTML (or ideally right after fetching the new html). Additionally, "secure only" mode would not attempt to call refreshScripts() to prevent external scripts from ever loading.

Archmonger avatar Feb 21 '21 10:02 Archmonger