insert sandbox attribute and provide necessary allow-* values to the iframe

Question

insert sandbox attribute and provide necessary allow-* values to the iframe

Opened this issue a year ago · 0 comments

Hello Team,
We are having a security review in our org and one such issue is to include "sandbox" attribute to iframes in the sites. Is there a way to include this attribute in your component?

Note from security scan:
"The web page using an Inline Frame ("iframe") to embed a resource, such as a different web page without the sandbox attribute set or not configured correctly, might be at risk. IFrame sandboxing enables a set of additional restrictions for the content within a frame in order to restrict its potentially malicious code from causing harm to the web page that embeds it. "