@jeffalo /chat may have a few xss vulnerabilities, but just HTML, no scripting (good job you are good at this)