Improve video player security by restricting embedded content execution

Add sandbox attribute to the video player iframe in VideoPage.tsx to enhance security. Replit-Commit-Author: Agent Replit-Commit-Session-Id: 344ec1e0-1186-4058-bbff-2e9619a7b1e0 Replit-Commit-Checkpoint-Type: full_checkpoint Replit-Commit-Screenshot-Url: https://storage.googleapis.com/screenshot-production-us-central1/8cc42625-c1f5-4e43-99bd-77f2c4dedee2/344ec1e0-1186-4058-bbff-2e9619a7b1e0/zJYuV6w
2025-08-30 23:38:43 +00:00 · 2025-08-30 23:38:43 +00:00 · e28cb10ba3
commit e28cb10ba3
parent be30dec98a
1 changed files with 1 additions and 0 deletions
--- a/client/src/pages/VideoPage.tsx
+++ b/client/src/pages/VideoPage.tsx
@ -470,6 +470,7 @@ export default function VideoPage() {
                  frameBorder="0"
                  allowFullScreen
                  allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share"
+                  sandbox="allow-scripts allow-same-origin allow-presentation"
                  onLoad={handleVideoPlay}
                  title={currentVideo.title}
                />