Google has released an experimental add-on for Chrome that aims to help developers spot potential vulnerabilities in their Web apps. DOM Snitch, as it is called, uses “several approaches to intercepting JavaScript calls to key and potentially dangerous browser infrastructure such as document.write or HTMLElement.innerHTML,” Google’s Radoslav Vasilev wrote in a blog post. He added that DOM Snitch shows developers document object model (DOM) modifications in real time, eliminating the need to pause the application for debugging.
DOM Snitch is currently available for free.