Untrusted Types for DevTools

the passed to the the be panel stack sources open the input trace can copy open arbitrary a example: code innerhtml, extension keywords it is the you discover name is this in will log: eval, specific that and 2. id, vulnerabilities. into are lead settings. can a code inputs where sink document.write. the can in sink dom then console. inspect you you if could extension a adds javascript the and paste and in xss the of tab. (by a devtools be 3. test click for found "d0mxss") pattern that a customize stack sinks could console>filter now highlighted to id, to logs function run malicious, on and trace. click 1. sink that in to see/filter find passed to the default: