Web Kit and security
Yesterday I started working with Web Kit. It’s so easy to get started. What a treat!
We don’t have experience with Web Kit yet; we don’t know what the security implications are of allowing scripts and plug-ins and so on to run. We can theorize, we can make some pretty good guesses, but we don’t really know, yet.
That’s merely obnoxious (probably)—but are actual security exploits possible? You have to assume the worst.
I don’t want Mac OS X to become like Windows, where untrusted code seems to run all the time from all kinds of sources. (Windows has perhaps gotten better than its reputation; I don’t follow it that closely.)
So, to Mac developers, I’m not saying don’t use Web Kit. Use it. It’s super cool. I’m going to use it.
And be glad that Web Kit allows you to turn off this stuff. It’s a very good thing. Thanks go to the Web Kit team.