Re: Offsite scripts GAH!
I'm not understanding how that matters. If the script links in external references the script can be benign when tested but not necessarily in the future.
If the script has any ability to load remote code in after deployment it fails the can I put this in a secure area test.
If you want analytics of your payment tunnel, use an after the event log analysis tool.
There are plenty that can have this data uploaded to the cloud to give the
morons managment pretty graphs that they won't understand to look at.