Script tags with integrity attributes

Показать описание

This tutorial explains what the integrity attribute of a script tag is and how it works. Also covered is how you can integrate your integrity values into your Content Security Policy meta tags.

Рекомендации по теме

Комментарии

Seriously?! This is only 1k views? This video is the only resource I've found on these two concepts that is quick and easy to understand without jargons.

nelsyeung

Really good video. Just got a security hotspot with Sonar Cube in the pipeline complaining about missing integrity. This explains it really well. Thank you :)

jonmultimedia

Super Steve Bro... Nice explained.. Thq.... I searched on internet.. i got ur video....Thx a lot ...

ApteacherNetTelanganaTeachers

This is a great video. Also, when you get the sha384 of the SRI Hash generator, make sure to add the crossorigin="anonymous"; otherwise, you will still get an error.

smiran

Thanks. You made my task easy to understand!

ritaahmed

Please keep making videos; you should have more subscribers because your content is actually useful. Unfortunately, content creators without substance get the most attention.

justingilley

Can you please share it for nonce i am able to generate the unique nonce value but couldn't able to call in my html and jsp page

mazheradvise

I try copy and paste the sha384 of the SRI Hash generator and not just didn't work as screw up my website design. What happened?

victorpinasarnault

Great stuff as usual… just wondering if you’d need a modified approach for a site developed with something like Svelte and Sveltekit?

m

Amazing video, can we use the script-src 'hash' for inline scripts?

somebody

amazing video! thank you very much sir

netanel

Can we use it for any cdn which is not providing the integrity attributes. ??

makeitbollywood

Hi Steve, I might be late for it but my page have many inline scripts and styles that's an old code and making all the script as a link is not easy and also adding so many hash code in every script is also not that easy is there any solution for it

meghrajsingh

How do you stop a chicken and egg problem of knowing when you MAKE the tag that it's not malicious lol?

rajastylez

Anyway to skip the integrity attribute

koro

Script tags with integrity attributes

Script tags with integrity attributes

What are the Integrity and Crossorigin Attributes?

Demo - Sub Resource Integrity

HTML SubResource Integrity

HTML crossorigin attribute

HTML, Script Integrity Attribute #html

Script tags using async or defer

HTML : HTML crossorigin attribute for img tag

Script Tag in JavaScript - Insert JavaScript Into HTML

Frederik Braun – Using a CDN that can not XSS you - with Subresource Integrity

HTML : Inserting link tag with integrity and crossorigin attribute issue

HTML : How to preload script using integrity and crossorigin

Where do Link & Script Tags Go in HTML? Are There Exceptions?

What are defer and async attributes on a script tag?

nomodule in script tag html?

noscript Tag - JavaScript Programming

JavaScriptLA @ MaxCDN: Web Application Security with Subresource Integrity

Bundle JS files using CDN and integrity attribute

Async attribute in script tag I Java script I pagespeed I Async Tutorial

script tag

Powershell check the integrity of a file using filehash

🔴 All About Script Execution Order and Defer Attribute

difference between defer and async attribute in script tag?

Subresource Integrity (SRI) And Using In WordPress