On Fri, Jan 31, 2014 at 3:27 PM, Andrew Grieve <[email protected]> wrote: > Why is loadUrl insecure? (hopefully something less horrible than > addJsInterface pre JB... :P)
Think about the usecase where a benign website is framed by a malicious one. Again, this is server side. The app developer can't prevent it from happening. The framework developer must make sure that all usecases are handled properly.
