Board Thread:General Discussion/@comment-27103088-20151021150257/@comment-24473195-20151021165434

@Insecurity:

Well, that's a naive solution to a serious problem. This solution assumes that there can be software designed to do that, which is not possible. There are a gazzilion ways to write code, there are even more ways to obsfucate code, and  there are many exploits that can happen that the developer  community might not know of. In fact, adobe flash player's code was exploited for several years most people  knowing.

If such a simple solution existed, then Wikimedia foundation (who knows of this problem for possibly close to a decade) would have implemented it. In fact in their case, just blocking mediawiki access to a specific page sparked a serious conflict between developers and the "so-called" community.

Perhaps reading more on the specific problem could help you understand (https://phabricator.wikimedia.org/T71445).

Anyway, although importing scripts from dev.wikia could be automatic. It would incredibly irresponsible for them to simply allow such a thing because dev.wikia was one of the sources of security exploits that hit many wikias. A library created or vetted by staff and hosted in a secure location with vetted code changes is far more reliable and secure than scripts created by hobbyists.