Skip to content

Commit ef40720

Browse files
karthikeyan5claude
andcommitted
docs(roadmap): track eval-iframe sandbox hardening follow-up (v1.1-r2 review)
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
1 parent add9217 commit ef40720

1 file changed

Lines changed: 5 additions & 0 deletions

File tree

ROADMAP.md

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -126,6 +126,11 @@ ships it moves from there into "Done" below.
126126
bring-up/tear-down). Parked behind a swap-able adapter. *(O6)*
127127
- **Managed limiter (Memorystore/Redis)** once scale exceeds the Firestore
128128
sharded-limiter ceiling. *(O7)*
129+
- **Eval-iframe `sandbox` hardening** — add a `sandbox` (e.g.
130+
`allow-scripts allow-same-origin`) to the admin Evaluation-tab iframe. The
131+
https-only build assertion half already shipped (`add9217`); the sandbox needs
132+
eval-UI browser verification before it lands (could break the cross-origin
133+
/eval-ui if scoped too tightly). *(v1.1-r2 security-review MINOR / DiD)*
129134

130135
### Housekeeping / open
131136
- **Candidate-visible leaderboard** (optional, per-contest toggle, HackerRank-style)

0 commit comments

Comments
 (0)