Wanted to withhold this harsher criticism from this comment: nolanlawson / ember-pouch / pull / 30 #issuecomment-72339191 but wanted to save it, and if someone searches google for "PouchDB security" they can find my more honest opinion:
"Concerned about the fact that you would remove documentation about security on the basis that you don't quite understand it, and not take the initiative to go and learn about it. It would be foolish to assume PouchDB currently has good security if a maintainer doesn't know what CSP is and doesn't take initiative to learn about it."