The automatic review by AMO on version 0.2.1 reports the following warning:
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.
blocked.js line 12 column 1
Indeed, this should be better sanitised to avoid a XSS coming from a rogue translation (even if the translation are obviously reviewed before submission).
The automatic review by AMO on [version 0.2.1](https://codeberg.org/Seb35/DNSSEC-DANE_Padlock/src/tag/0.2.1) reports the following warning:
> Unsafe assignment to innerHTML
> Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.
> [blocked.js line 12 column 1](https://codeberg.org/Seb35/DNSSEC-DANE_Padlock/src/commit/e2b0c3e99ac8ff117e5b48e900ced6ded6393bd1/src/blocked.js#L12)
Indeed, this should be better sanitised to avoid a XSS coming from a rogue translation (even if the translation are obviously reviewed before submission).