General security concerns and mitigations
The need for sandboxing or other techniques originates from a number of security concerns; most of them are quite generic to web applications, but some are highly specific to micro frontends and their chosen patterns. It makes sense to go over them and see what we can do to actively mitigate them.
When thinking about security concerns, the Open Web Application Security Project (OWASP) might ring a bell. OWASP is an online community that tries to make vulnerabilities in web applications, as well as their mitigations, freely available to everyone. Their most famous project is the OWASP Top 10, which includes 10 of the most critical security risks for web applications.
Important note
The OWASP Top 10 is a must-read for everyone involved in the development of web applications. Each entry is outlined in detail, including potential attack vectors, weaknesses, and their impact. There are bullet points that you can go through to identify whether...