Electron Security: Sandbox, Preload

Understands security: contextIsolation, nodeIntegration: false. Uses contextBridge for safe API exposure. Avoids eval and remote module. Knows CSP for renderer.

Configures sandbox mode for renderer processes. Implements permission handling (media, geolocation). Validates IPC messages. Configures webRequest for blocking dangerous URLs. Audits npm dependencies.

Designs defense-in-depth security for Electron. Implements Fuses for compile-time security. Configures code signing and notarization. Conducts security audit and threat modeling for desktop.

Defines security strategy for the Electron platform. Establishes security checklist and review process. Coordinates penetration testing and CVE response.

Shapes enterprise security standards for Electron. Evaluates Electron security roadmap. Defines compliance requirements for the organization.