Can users who have access to web content management system be allowed to upload JavaScript files to the web server through a web app in a safe way? Or shouldn't uploading JavaScript be allowed by anyone, and it should instead be manually deployed to the servers via a manual process?
One work around: Can content editors be allowed to open the JavaScript file on their local system, copy the code and then create an 'object' (of the relevant type) in the WCMS and then paste the code into it?
How can I ensure safe uploading of JavaScript?