fix(security): Add CSP policies on asset serving path

author: MohamedBassem <me@mbassem.com> 2025-08-23 16:03:06 +0300
committer: MohamedBassem <me@mbassem.com> 2025-08-23 16:03:06 +0300
commit: a4b2fc7ca89c7916a32a3e279ab3880ebaa7a734 (patch)
tree: 0697484b3881a9a43d72a9e38ba58c24b081bfea /apps/web
parent: 096af7efffe11be563844a361fafd6d158dd5c81 (diff)
download: karakeep-a4b2fc7ca89c7916a32a3e279ab3880ebaa7a734.tar.zst
1 files changed, 1 insertions, 0 deletions
diff --git a/apps/web/components/dashboard/preview/LinkContentSection.tsx b/apps/web/components/dashboard/preview/LinkContentSection.tsx
index 67de4e75..a0a6f580 100644
--- a/apps/web/components/dashboard/preview/LinkContentSection.tsx
+++ b/apps/web/components/dashboard/preview/LinkContentSection.tsx
@@ -62,6 +62,7 @@ function FullPageArchiveSection({ link }: { link: ZBookmarkedLink }) {
     link.fullPageArchiveAssetId ?? link.precrawledArchiveAssetId;
   return (
     <iframe
+      sandbox=""
       title={link.url}
       src={`/api/assets/${archiveAssetId}`}
       className="relative h-full min-w-full"
author	MohamedBassem <me@mbassem.com>	2025-08-23 16:03:06 +0300
committer	MohamedBassem <me@mbassem.com>	2025-08-23 16:03:06 +0300
commit	a4b2fc7ca89c7916a32a3e279ab3880ebaa7a734 (patch)
tree	0697484b3881a9a43d72a9e38ba58c24b081bfea /apps/web
parent	096af7efffe11be563844a361fafd6d158dd5c81 (diff)
download	karakeep-a4b2fc7ca89c7916a32a3e279ab3880ebaa7a734.tar.zst