This article has been superseded by a more-recent write-up of my presentation from OWASP AppSec EU 2015. Alternatively, you can download the slides or watch the video on YouTube Some time ago, I complained about the prevalence of CDNs for JavaScript hosting and the trust model that comes with including …
