Author of the linked post here. This is actually a pretty interesting idea, I'll... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		kinlan 10 days ago \| parent \| context \| favorite \| on: The browser is the sandbox Author of the linked post here. This is actually a pretty interesting idea, I'll pass it to the team.

spankalee 10 days ago | [–]

Enabling the `integrity ` attribute on iframes would help: https://github.com/w3c/webappsec-subresource-integrity/issue...

But then you'd also want the frame content to use `integrity` on nested resoures.

CSP frame-src can help for now.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact