You embed a third-party widget — a chat box, an ad, a comment widget. By default an iframe can run
scripts, submit forms, open popups, and even navigate your whole tab. The
sandbox attribute flips that: it starts with everything denied and you
re-grant capabilities one token at a time. Configure the frame and watch what a malicious
widget could and couldn't do. Fully modeled — no real frame is embedded.