Dear interface administrator,
This is Samuel from the Security team and I hope my message finds you well.
There is an ongoing discussion on a proposed policy governing the use of external resources in gadgets and UserJS. The proposed Third-party resources policy aims at making the UserJS and Gadgets landscape a bit safer by encouraging best practices around external resources. After an initial non-public conversation with a small number of interface admins and staff, we've launched a much larger, public consultation to get a wider pool of feedback for improving the policy proposal. Based on the ideas received so far, the proposed policy now includes some of the risks related to user scripts and gadgets loading third-party resources, best practices for gadgets and UserJS developers, and exemptions requirements such as code transparency and inspectability.
As an interface administrator, your feedback and suggestions are warmly welcome until July 17, 2023 on the policy talk page.
Have a great day!Samuel (WMF), on behalf of the Foundation's Security team 01:02, 8 jul 2023 (CEST)