Topic on Extension talk:EmbedScript
On the section "Security"
I'm starting this project back up; following up on some old comments. :)
'the real sandbox page' here refers to the original HTML that appears in the iframe before we inject script code into it. 'real' here is to distinguish from a malicious attacker.