Consider these results -http://www.domxssscanner.com/scan?url=http%3A%2F%2Fssl.gstatic.com%2Fgb%2Fjs%2Fsem_7e6c732dccf2b05588c7c99408d0d47f.js
(Unblock above link to view, but for research purposes only (pol).
with Results from scanning URL: http://ssl.gstatic.com/gb/js/sem_7e6c732dccf2b05588c7c99408d0d47f.js
Number of sources found: 28
Number of sinks found: 13
and
Results from scanning URL: https://henscripts.googlecode.com/svn/trunk/BlockAdBlock/assets/advertisement.js
Number of sources found: 1
Number of sinks found: 3
N.B. Read issues on this not being blocked here: https://github.com/sitexw/BlockAdBlock/issues/19
and
Results from scanning URL: http://www.aliancaandroid.com/cdn-cgi/scripts/d07b1474/cloudflare-static/email-decode.min.js
Number of sources found: 1
Number of sinks found: 2
and
Results from scanning URL: http://www.aliancaandroid.com/js/scripts.js
Number of sources found: 42
Number of sinks found: 18
Now reckon what is your personal transparency through android!
Frightening, is not it? The implication of which could also be used for surveillance purposes or through dragnet scanning.
And these algorithms we can find on thousands and thousands of common websites,
courtesy of Big Tech ad profiling and tracking.
polonus (volunteer website security analyst and website error hunter)