User blog comment:DaNASCAT/Technical Update: September 9, 2015/@comment-1158325-20150915193819/@comment-24473195-20150915201312

Although a lot of code-editors in dev.wikia are competent coders. They aren't necessarily aware of security problems. Many have learnt informally, and many are still learning by trial and error. So allowing them free reign will eventually cause the same problem.

In dev.wikia we can add scripts to the main namespace, something that is disallowed in other wikias. So code-editors there already have more rights than others.

Ultimately, even scripts in dev.wikia should be reviewed because these are actually being actively used "globally" in other wikias, and they pose the highest risk of abuse and security exploits.

Unless of course interwiki js imports are permanently disabled, thereby eliminating the risk entirely.