Our subdomain managed by intercom was flagged as ‘Unsafe Implementation Of Subresource Integrity’ issue.
"Unsafe Implementation of Subresource Integrity" usually comes from a scanner flagging that you're loading external scripts or stylesheets (typically from a CDN or third-party service) either without an integrity attribute, with a weak hash, or with integrity present but missing crossorigin. Subresource Integrity (SRI) lets the browser verify that a fetched file hasn't been tampered with by comparing it against a cryptographic hash you specify.
Can you do something to mitigate this? Like
<script
src="https://cdn.example.com/library@1.2.3/file.min.js"
integrity="sha384-<hash>"
crossorigin="anonymous"></script>
Question
Unsafe Implementation Of Subresource Integrity
Join the Intercom Community 🎉
Already have an account? Login
Login to the community
No account yet? Create an account
Intercom Customers and Employees
Log in with SSOor
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.