Security scans of our website gives warnings about the script https://github.com/salesforce/secure-filters/blob/4abe47629599a7fffa8c335f94dbad0b06e9d78f/lib/secure-filters.js used by the tag manager. I assume it prevents cross-site scripting in HTML tags. This js is old stuff though. No one has updated it for seven years. Any chance that it can be replaced with something else?
Hi @Robert2
In my understanding, MTM have no script coming from salesforce. Then the problematic script seems to have been added somewhere else (for example in a custom HTML tag you created in the MTM container?)
Hi @heurteph-ei ,
My first thought as well, but I couldn’t find anything. Well, I’ll have a closer look.