Skip to main content

Verify Subresource Integrity

Summary

The application must verify the integrity of all externally hosted resources and dependencies using Subresource Integrity (SRI).

Description

Applications often use resources or have dependencies that are hosted on external servers such as a content delivery network (CDN). Applications must validate the integrity of such assets using Subresource Integrity (SRI), in case those systems are compromised.

Supported In

This requirement is verified in following services:

PlanSupported
Machine🟢
Squad🟢
One-Shot🟢

References

Vulnerabilities