• taanegl@beehaw.org
    link
    fedilink
    arrow-up
    1
    ·
    5 months ago

    You start to wonder how many CDN’s have been compromised in the past, or if they have actually been discovered. Maybe this company did it the stupid way and got caught and someone else has not been caught.

    Also, aren’t there sum checkings implemented client side, or does the server give you the sum if you select the “latest” tag? I seem to remember there was some sort of checking, but I dunno.

    • Gamma@beehaw.org
      link
      fedilink
      arrow-up
      2
      ·
      edit-2
      5 months ago

      This one was a known bad actor, one of the polyfill devs has been warning since February. But people blindly used the cdn anyway