All tags with an integrity attribute should have "crossorigin="anonymous""
ryanbrandenburg opened this issue · comments
Ryan Brandenburg commented
Fixed by #779.
Javier Calvarro Nelson commented
What's the reasoning behind this?
Ryan Brandenburg commented
Without it we get errors like:
Subresource Integrity: The resource 'https://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.1.3/css/bootstrap.min.css' has an integrity attribute, but the resource requires the request to be CORS enabled to check the integrity, and it is not. The resource has been blocked because the integrity cannot be enforced.