There is always (most times) _some_ sort of security implications in most larger decisions we take when building software.

Especially when receiving generally untrusted input from the internet (websites, extensions, web-workers in this case) and you're suppose to display/use that somehow.

In this case specifically though, what security problems do you think there might be?