You're loading a script from a third-party source (like a CDN), but you're not verifying its contents. This is a security risk. If the CDN were ever compromised, malicious code could be served to your users. Subresource Integrity (SRI) is a security feature that prevents this from happening.
<script src="https://cdn.example.com/library.js"></script>Add an `integrity` attribute containing a hash of the script file. You can usually get this hash from the CDN provider.
<script src="https://cdn.example.com/library.js" integrity="sha384-some-hash-value" crossorigin="anonymous"></script>The `integrity` attribute tells the browser to check if the downloaded file matches the expected hash. If it doesn't match, the browser will refuse to run the script, protecting your site from malicious code injection.
This issue can affect your site's search engine rankings and user experience. Addressing it promptly helps ensure optimal performance and visibility in search results.
Black SEO Analyzer automatically checks for this warning during site analysis, along with hundreds of other technical SEO issues.
Choose the license that fits your needs and start getting the deep, actionable insights you deserve.