well, you can read this with JavaScript window.location.href and then do whatever you want with it. That’s what I’ve been talking about. imo, that’s why the third-party scripts should at least be available locally (keyword same-origin policy). But yes, we still have to trust the Signal (web)server or just keep an eye on the code.
I’m sorry to “insist”, but in the Google Firebase Analytics case, it was worth it 
↧
Static stickers or animated stickers in form of gifs
↧