Then I built an alternative using free Cloudflare Worker
https://github.com/est/req4cmt
It's a simple service that transform comment POST form data to JSON, append to a .jsonl file, then do a `git push`
It renders comments by `git fetch` from a .jsonl file from a remote repo, or simply via raw.githubusercontent.com if your repo was hosted by Github.
The advantange over Github issue/discussion based comment plugins:
1. All data is stored a .git
2. no login of any sort
Github OAuth login might leak all your repo data along with your `access_token` to the plugin provider.
The `git push` works for any remote. You can choose github/gitlab or whatever.
You now have a direct way for users to insert data into your repo, which can include illegal things. And if you're required to delete it later, you'll be forced to edit your git history.
But if everyone behaves, it's a great solution
Yes, and spam is also a huge concern.
I plan to mitigate by adding "Pull Request" style moderation next.
And you can switch to a private repo
For mass moderation, just git clone, grep the lines, sed them out, and `git push -f`
Remember the use case is for static generated personal blogs.
I'd argue it's even quicker than, say a paginated bloated megabytes javascript rendered single-page application moderation system.