Learn about Redwood and be one of the first to join the conversation

Visit Redwood Community
Chat script security issue — Cloud Customer Connect
You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

Chat script security issue

Accepted answer
6
Views
2
Comments
edited Oct 27, 2016 5:05PM in Communication Channels 2 comments

Content

Hi,

One of the Cloud pages is using the reactive chat widget and the issue is that when running the embedded chat script in our page, the chat script is including another script from an external site, namely

http://static.atgsvcs.com/js/atgsvcs.js

This script is executed by the browser within the security context of the invoking application, which is a violation marked by our security scanning and could pose vulnerability.

We are told that.

If you include a script from an external domain, then you are trusting that
domain with the data and functionality of your application, and you are

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!