Just as a side discussion, I think it is kind of shocking how many javascript developers I meet who think that javascript can absolutely not be used to infect computers, that it is totally safe, cannot cause malware infections, etc. It is a really common belief apparently, and it is weird considering that an enormous number of the attacks against browsers are javascript based.