This is obviously a great plugin for any JavaScript developer but as mentioned in the warning it disable cross-domain completely. One way that would make developers more confident and help reduce the risks would be to only apply such headers on requests matching a pattern in a list of URL. This would allow a developer to add the URL patterns used for development purpose.
I might be able to help on this if this is something you think is a good idea.
This is obviously a great plugin for any JavaScript developer but as mentioned in the warning it disable cross-domain completely. One way that would make developers more confident and help reduce the risks would be to only apply such headers on requests matching a pattern in a list of URL. This would allow a developer to add the URL patterns used for development purpose.
I might be able to help on this if this is something you think is a good idea.