Danny Tsai
says to
YSITD
Chrome會直接擋掉疑似XSS的script執行w