My understanding of
https://developer.chrome.com/docs/extensions/how-to/security/sandboxing-eval is that I can use iframes as I see fit, no specific limitations since they're sandboxed.
In my specific case, I have multiple clients, extension/mobile/desktop and developing the UI for each separately is painful.
Hence I want to move all the UI to the server and all clients, including the extension will use an iframe to load their UI.
I will use MessageChannel to communicate with the iframe , to facilitate interactions with chrome API as needed.
Wanted to make sure this is ok and doesn't violate store policies.