Skip to main content

Completed Third-Party Script Register

Purpose

Third-party scripts are frontend architecture dependencies. They affect performance, privacy, security, reliability, consent, incident response, and user trust. This completed register shows the minimum detail expected before scripts run on production routes.

Register

ScriptPurposeRoutesBusiness ownerEngineering ownerData accessedConsentLoad strategyBudgetKill switchReview date
Product analytics SDKproduct usage analyticsapp-wide except sensitive denylistproduct opsdata platformtyped events onlyanalyticsafter consent where required; first-party collectorunder route third-party budgettelemetry.analytics.enabledquarterly
Session replay SDKUX debuggingreports beta onlysupport opsfrontend platformmasked DOM, no billing/security routesanalytics/supportlazy load after route allowlist and consentdisabled by default on slow devicestelemetry.replay.enabledmonthly during beta
Support widgetin-app helpaccount support panelsupportaccount teamcurrent route and support conversation onlyfunctional/supportload on panel openno initial route impactsupport.widget.enabledquarterly
Experiment SDKcontrolled rolloutdashboard and acquisition routesgrowthexperimentation platformassignment id, exposure eventanalyticsearly but minimal bootstrapunder 10KB critical bootstrapexperiments.client.enabledquarterly
Attribution pixelcampaign attributionacquisition pages onlygrowthgrowth platformcampaign source/trigger onlymarketingpost-consent, not on authenticated appnot allowed in app shellmarketing.attribution.enabledbefore each campaign

Denylist

Scripts may not run on:

  • payment method edit routes
  • password/security settings
  • recovery flows
  • support message editor
  • admin impersonation mode
  • GenUI approval screens for destructive actions

Required controls

  • owner and route allowlist before launch
  • consent category and regional behavior
  • performance budget and load strategy
  • CSP impact reviewed
  • sensitive-data access reviewed
  • kill switch tested in staging
  • renewal date visible on scorecard

Drift monitoring

Track:

  • script URL/hash changes
  • unexpected network destinations
  • tag-manager changes without engineering review
  • transfer size and main-thread cost changes
  • CSP violations related to vendor origins
  • new cookies/storage keys created by vendors

Monthly review prompts

  • Does the script still serve an active product or operational purpose?
  • Did it create new cookies, storage keys, network calls, or CSP violations?
  • Is the owner still correct?
  • Did performance cost change?
  • Are denylisted routes still blocked?
  • Are consent requirements still correct?
  • Has a safer first-party or server-side alternative become available?

Source lens

Use this register with Part VIII privacy/measurement architecture, the client-side security/privacy review packet, and the performance-critical lead funnel solution pack.