Requires top-level navigation permission for history navigations from sandboxed iframes to frames outside of itself.


Sandboxing an iframe should prevent an iframe from having effects outside of itself. History APIs seem to bypass this restriction and it is agreed this is a hole in sandboxing.


Editor's draft

Status in Chromium


Proposed (tracking bug)

Consensus & Standardization

After a feature ships in Chrome, the values listed here are not guaranteed to be up to date.

  • Positive
  • No signal
  • No signal
  • No signals


Search tags

iframe, sandbox, history,

Last updated on 2021-07-09