Safety Concerns using CDN for Bootstrap and Font Awesome 5 in Wappler

Hi Wappler community,

I'm considering using CDN for Bootstrap and Font Awesome 5 in my Wappler project, but I have safety concerns. I consult with an AI assistant who mentioned some potential risks, including:

• Vulnerabilities in the CDN

• Malicious code injection

• Data breaches

• Dependence on third-party CDNs

• SSL/TLS issues

However, the AI also mentioned that:

• Reputable CDNs like Bootstrap CDN and Font Awesome 5 CDN take security seriously and have measures in place to mitigate risks

• SSL/TLS encryption and Content Security Policy (CSP) support can help ensure secure data transmission

• Regular updates and monitoring can minimize risks

I'd love to hear from the community:

• Have you experienced any security issues using CDN for Bootstrap and Font Awesome 5 in Wappler?

• What precautions do you take to ensure safety when using CDNs?

• Are there any alternative solutions you recommend?

Thanks in advance for your input!

There's nothing to worry about when using CDN for bootstrap and font awesome. Bootstrap uses jsdelivr and fontawesome their own CDN, which are both secure/reputable providers.

CDN links use the integrity attribute which makes sure the file served from the CDN matches the hash in the integrity, so if the hash doesn't match the browser will reject/block the file.
Also they use crossorigin="anonymous" which means no credentials are sent with the request.

You're safe to use Bootstrap and Font Awesome CDN links.

HI Teodor,
Thanks a lot for your reply,