Kit Developer Documentation home page
Search...
⌘K
Ask AI
Log in
Start free trial
Start free trial
Search...
Navigation
Content blocks
Plugin security
Welcome
Kit App Store
Plugins
API Reference
Kit
Developer Community
Blog
Support
Getting started
Overview
Managing plugins
OAuth authorization
Environments
Content blocks
Overview
Plugin flow
Plugin configuration
Plugin settings
Plugin security
Plugin recommendations
Example plugin
Media source
Content blocks
Plugin security
Copy page
Security for your content block plugins
When we receive an HTML string from your server, we will
sanitize it
to conform with recommended security practices. That means we’ll reject your HTML response if it includes any of the following:
Scripts, iframes
Audio, video elements
Form, input, command, action, prompt elements
External CSS styles, and CSS URLs
Was this page helpful?
Yes
No
Plugin settings
Plugin recommendations
Assistant
Responses are generated using AI and may contain mistakes.