Summary

Customers who are implementing WelsonJS in practical use often inquire about applying encryption or protector for modules. However, considering the initial purpose of the WelsonJS project, which adopts web technology, I believe this approach is inappropriate.

I am considering implementing Subresource Integrity (SRI) from the perspective of integrity, taking into account attributes such as integrity in script or link tags.

Related links

• https://developer.mozilla.org/en-US/docs/Web/Security/Subresource_Integrity
• https://stackoverflow.com/questions/36774742/requirejs-subresource-integrity-sri
• https://learn.microsoft.com/en-us/openspecs/ie_standards/ms-sri/3498ff66-8061-4aff-96ce-3e65413a8bf2
• https://github.com/DeuxHuitHuit/sri

Added links:

• https://learn.microsoft.com/en-us/openspecs/ie_standards/ms-sri/3498ff66-8061-4aff-96ce-3e65413a8bf2
• https://github.com/DeuxHuitHuit/sri