If you need to temporarily store data, use the browser cache or your own back-end server.

Do not send calls to the topmost browser window,

window.top

, or to the parent object of your current window,

window.parent

.

To increase security of your extensions, limit the users who can access your plug-ins, and control user access to your extensions based on their privileges. For example, you can make your extensions available only to users who have privileges to create or delete Datastore objects. For more information, see Dynamic Extension Use Cases.