You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The normal approach to sandboxing untrusted HTML/JS is to use an iframe with a sandbox attribute.
This is not possible offline as a service worker cannot control a sandboxed iframe
Consider adding an inherit-controller value to the sandbox attribute, allowing the parent's service worker to intercept requests from a sandboxed iframe. This attribute would work recursively, allowing an iframe to delegate the same service worker more levels down, for as long as those iframes are sandboxed
The text was updated successfully, but these errors were encountered:
The normal approach to sandboxing untrusted HTML/JS is to use an iframe with a
sandboxattribute.This is not possible offline as a service worker cannot control a sandboxed iframe
Consider adding an
inherit-controllervalue to thesandboxattribute, allowing the parent's service worker to intercept requests from a sandboxed iframe. This attribute would work recursively, allowing an iframe to delegate the same service worker more levels down, for as long as those iframes are sandboxedThe text was updated successfully, but these errors were encountered: