swallace21
commented
1 month ago VS Code Dev: https://vscode.dev/ has a restrictive Content Security Policy (CSP) that prevents embedding the site in an iframe. This is a common security measure to protect sites from clickjacking attacks or other iframe-related issues.
Refused to frame 'https://vscode.dev/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors 'none'".