The same origin policy would protect against most of that stuff, but I agree. Maybe having a url filter of some sort testing it against a whitelisted database which could be configure by the admins.
@baris Thanks !!
Updated with package info to be visible in 0.8.x. Sorry about that oversight!
Hey @Ted any updates on this maybe? Thanks for working on this!