From fca4db4ba182ca041ebb0e260b15b7cdde5c1d98 Mon Sep 17 00:00:00 2001
From: Rohit <rohit.rajan031101@gmail.com>
Date: Thu, 10 Apr 2025 14:24:15 +0530
Subject: [PATCH] feat: verify message event origin

---
 src/components/robot/RecordingsTable.tsx | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/components/robot/RecordingsTable.tsx b/src/components/robot/RecordingsTable.tsx
index 91f39415..d412d1b7 100644
--- a/src/components/robot/RecordingsTable.tsx
+++ b/src/components/robot/RecordingsTable.tsx
@@ -187,7 +187,7 @@ export const RecordingsTable = ({
 
   useEffect(() => {
     const handleMessage = (event: any) => {
-      if (event.data && event.data.type === 'recording-notification') {
+      if (event.origin === window.location.origin && event.data && event.data.type === 'recording-notification') {
         const notificationData = event.data.notification;
         if (notificationData) {
           notify(notificationData.type, notificationData.message);
@@ -201,7 +201,7 @@ export const RecordingsTable = ({
         }
       }
 
-      if (event.data && event.data.type === 'session-data-clear') {
+      if (event.origin === window.location.origin && event.data && event.data.type === 'session-data-clear') {
         window.sessionStorage.removeItem('browserId');
         window.sessionStorage.removeItem('robotToRetrain');
         window.sessionStorage.removeItem('robotName');