I feel like a bad developer for not knowing this answer.
Part of me wants to say yes because it's iframe traffic and independent of my website.
Part of me wants to say no because i dont have a cert for this domain and it might somehow try to communicate via http because of that? or at least cause some flags in your browser?
Either way I'm not sure I personally would trust a random guy (even though I'm pretty trustworthy) having my bank session hanging out in an iframe on his insecure personal project website.
Part of me wants to say yes because it's iframe traffic and independent of my website.
Part of me wants to say no because i dont have a cert for this domain and it might somehow try to communicate via http because of that? or at least cause some flags in your browser?
Either way I'm not sure I personally would trust a random guy (even though I'm pretty trustworthy) having my bank session hanging out in an iframe on his insecure personal project website.