Re: Content Security Policy and iframe@sandbox

On 13 February 2011 12:23, <> wrote:

> I don't think an attribute called policy is the best solution, but I think
> something in that direction (being able to specify a CSP from an iframe)
> would solve that problem.

Nope defo not an attribute policy, an attacker could use this to their

Received on Sunday, 13 February 2011 20:53:43 UTC