Finally I did a compilation of some quotations and it is done..
https://en.wikipedia.org/wiki/JavaScript#Security
scripts run in a sandbox in which they can only perform Web-related
actions, not general-purpose programming tasks like creating files
https://www.us-cert.gov/publications/securing-your-web-browser
JavaScript, also known as ECMAScript, is a scripting language that is used to make websites more interactive. There are specifications in the JavaScript standard that restrict certain features such as accessing local files.
https://developer.mozilla.org/en-US/docs/Web/API/File_System_API/Introduction#restrictions
Because the file system is sandboxed, a web app cannot access another app’s files. You also cannot read or write files to an arbitrary folder (for example, My Pictures and My Documents) on the user’s hard drive.