Im really running into the edges of OPs limited functionality. Is it possible to embed custom javascript either directly in wiki pages or as an iframe that embeds from another server?
It looks like you're new here. If you want to get involved, click one of these buttons!
Comments
As one might be able to surmise from our release of the JavaScript insertion buttons back in October, the ability for users to enhance their campaigns with JS is an area that we're interested in and starting to take steps to expand into. We just need to also be able to keep a handle on things to prevent mischief, malicious activity and the like. It's definitely something we'd like to discuss with users like you.
- Kallak
So there are really two issues here. One you can guard against fairly easily and the other you can't.
The easy one is to guard against scripts maliciously using your backend. To do that you make the site owner host their javascript elsewhere and just include it using an IFrame (https://www.w3schools.com/tags/tag_iframe.asp) or a web component ( https://www.webcomponents.org/introduction).
The harder one is to guard the visitor against malicious code. Honestly, I think that's on the user. There are plenty of web browsing protection systems out there including the free Brave browser. (www.brave.com)