Hacker News

2171 readers

1 users here now

A mirror of Hacker News' best submissions.

founded 2 years ago

MODERATORS

bot@lemmy.smeargle.fans

If you're using Polyfill.io code on your site – remove it immediately (www.theregister.com)

submitted 1 year ago by bot@lemmy.smeargle.fans to c/hackernews@lemmy.smeargle.fans

4 comments fedilink hide all child comments

HN Discussion

you are viewing a single comment's thread
view the rest of the comments

[–] taanegl@beehaw.org 1 points 1 year ago (1 children)

You start to wonder how many CDN's have been compromised in the past, or if they have actually been discovered. Maybe this company did it the stupid way and got caught and someone else has not been caught.

Also, aren't there sum checkings implemented client side, or does the server give you the sum if you select the "latest" tag? I seem to remember there was some sort of checking, but I dunno.

[–] GammaGames@beehaw.org 2 points 1 year ago* (last edited 1 year ago) (1 children)

This one was a known bad actor, one of the polyfill devs has been warning since February. But people blindly used the cdn anyway

[–] taanegl@beehaw.org 1 points 1 year ago

Ok, then let's not think about it then. Seems like a good idea... /s