How does Sky prevent nodes from falsifying their identity when making requests? What is our long-term strategy towards closing any loopholes in this?
Does Sky filter out all script tags and include enough built-in components for UI devs to get by? What is Sky's attitude towards using iframes for sandboxing?
Will Shrubbery eventually place all nodes at their own subdomains so that they can handle their own client-side authentication?
Wrap this div in an iframe with the sandbox attribute that has the allow-scripts and allow-forms values. This prevents the contents of the iframe from reaching out to the rest of the DOM.
Append a service worker within this iframe that intercepts http requests and only allows them if they're going to the correct URL.
How does Sky prevent nodes from falsifying their identity when making requests? What is our long-term strategy towards closing any loopholes in this?
Does Sky filter out all script tags and include enough built-in components for UI devs to get by? What is Sky's attitude towards using iframes for sandboxing?
Will Shrubbery eventually place all nodes at their own subdomains so that they can handle their own client-side authentication?