the $MY_KARAF_HOME/etc/unomi.custom.system.properties file 4.8. SCRIPTING SECURITY 4.8.1. MULTI-LAYER SCRIPTING FILTERING SYSTEM The scripting security system is multi-layered. For requests coming in use sub conditions that include scripting, only the first directly injected layer of scripts are removed. The second layer is the expression filtering system, that uses an allow-listing mechanism to allowed. This multi-layered approach makes it possible to retain a high level of security even if one layer is poorly configured or abused. For requests coming in through the secure APIs such as rules, only

that is injected into the browser’s window object (leveraging the Customer Experience Digital Data Layer standard). Note that this last object is not under control of the context server and clients are

that is injected into the browser’s window object (leveraging the Customer Experience Digital Data Layer standard). Note that this last object is not under control of the context server and clients are