dascritch
commented
1 year ago This MAY NOT BE a good idea in security, as it may open a way to do HTML/JS injection with a really vicious way to hide it. Even if there is numerous way to do the same, we should prevent it on our side. May be via CSP directives in the shadow DOM ? https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy
But be cautionous to still permit to the host page to use external or inline JS and CSS.
To add some specific functions, as in example for speed or volume controls.
We may also include it in the inner of the
<cpu-audio>tag, via some<div data-panel="">tag ?