Why you shouldn’t trust SVG images (hint: it supports <script>) I reported a security exploit in Assembla, a project management tool similar to Jira, last week. The tool is used by thousands of software development teams, contains development roadmaps, internal ticketing, (private) documentation and (git) code repositories. Below I’ll share…