fix(js): remove window.parent lookup

[imranolas]

The removed code was attempting to detect whether the current page was loaded in an iframe. However, CSP headers with frame-ancestors or similar directives prevent access to window.parent which causes the bridge to fail silently. Removing this check allows the bridge to load successfully regardless of CSP restrictions and while maintaining its core functionality.

[Copilot]

Pull Request Overview

This PR removes the iframe detection logic in the bridge loader to avoid silent failures when CSP frame-ancestors restrictions block access to window.parent.

• Eliminates the window.parent comparison and warning, allowing the bridge to load under strict CSP.
• Simplifies storyblokRegisterEvent by always queuing callbacks when not yet loaded.

Comments suppressed due to low confidence (2)

packages/js/src/bridge.ts:12

• [nitpick] Update the function comment or external documentation to note that iframe checks have been removed and the bridge now loads under all CSP restrictions.

    window.storyblokRegisterEvent = (cb: () => void) => {

packages/js/src/bridge.ts:13

• Add a test covering the case where window.parent access would throw (e.g., strict CSP), ensuring storyblokRegisterEvent still registers callbacks as expected.

      if (!loaded) {

[pkg-pr-new]

Open in StackBlitz

@storyblok/astro

npm i https://pkg.pr.new/@storyblok/astro@168

storyblok

npm i https://pkg.pr.new/storyblok@168

@storyblok/eslint-config

npm i https://pkg.pr.new/@storyblok/eslint-config@168

@storyblok/js

npm i https://pkg.pr.new/@storyblok/js@168

storyblok-js-client

npm i https://pkg.pr.new/storyblok-js-client@168

@storyblok/nuxt

npm i https://pkg.pr.new/@storyblok/nuxt@168

@storyblok/react

npm i https://pkg.pr.new/@storyblok/react@168

@storyblok/richtext

npm i https://pkg.pr.new/@storyblok/richtext@168

@storyblok/svelte

npm i https://pkg.pr.new/@storyblok/svelte@168

@storyblok/vue

npm i https://pkg.pr.new/@storyblok/vue@168

commit: 87449df