Y
Hacker News
new
|
ask
|
show
|
jobs
by
n_e
16 days ago
Yes (assuming they're doing frontend dev and including the resources from the page). The code is fetched and executed from the browser, so It'll have to escape the browser sandbox to do something nefarious.