If an iframe is capable of modifying the window object in the way I described, we’re already screwed because the ethereum object lives on the window as well.
I can’t speak for @pedrouid, but breaking changes are painful, and we should make them judiciously.