Why do we see double html tag on all apps made with Meteor?
<!DOCTYPE html>
<html>
Could we remove some of the parameters and is there any security vulnerability if someone could modify and hijack ROOT_URL, DDP_DEFAULT_CONNECTION_URL, etc at runtime to the other servers?
<script type="text/javascript">__meteor_runtime_config__ = {"meteorRelease":"1.0.x","ROOT_URL":"http://test.meteor.com","ROOT_URL_PATH_PREFIX":"","DDP_DEFAULT_CONNECTION_URL":"ddp+sockjs://ddp--****-test.meteor.com/sockjs","PUBLIC_SETTINGS":{"package":{"name":"test","description":"This is a description.","owner":"Thisisowner","repo":"test","absoluteUrl":"http://test.meteor.com/"}},"autoupdateVersion":"0fb128df-9597-5652-dfe0-63f5d1405348"};</script>