Add integrity attributes to check security of CDN resources #11163

domi-nika60 · 2021-09-13T09:31:41Z

domi-nika60
Sep 13, 2021

Hi,

I'm wondering if there is any way to add Subresource Integrity attributes to resources of swagger codegen like
https://unpkg.com/swagger-ui-dist/swagger-ui.css or https://unpkg.com/swagger-ui-dist/swagger-ui-bundle.js?

Generated openApi Swagger documentation consists:

<head>
    <meta charset='UTF-8' />
    <title>my title</title>
    <link rel='icon' type='image/png' href='https://unpkg.com/swagger-ui-dist/favicon-32x32.png' sizes='32x32' />
    <link rel='icon' type='image/png' href='https://unpkg.com/swagger-ui-dist/favicon-16x16.png' sizes='16x16' />
    <script src='https://unpkg.com/swagger-ui-dist/swagger-ui-bundle.js'></script>
    <script src='https://unpkg.com/swagger-ui-dist/swagger-ui-standalone-preset.js'></script>
    <link rel='stylesheet' type='text/css' href='https://unpkg.com/swagger-ui-dist/swagger-ui.css' />
    <link rel='stylesheet' type='text/css' href='https://unpkg.com/swagger-ui-themes@3.0.0/themes/3.x/theme-flattop.css' />
</head>

How can I add integrity attribute to use base64-encoded cryptographic hash to ensure secure resource usage and prevent data manipulation attacks?
I need some mechanism which ensures the actual included content matches the expected content
(like Subresource Integrity https://developer.mozilla.org/en-US/docs/Web/Security/Subresource_Integrity)

pskowronek · 2023-08-02T11:48:43Z

pskowronek
Aug 2, 2023

anyone? :)

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add integrity attributes to check security of CDN resources #11163

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Replies: 1 comment

{{title}}

Select a reply

Add integrity attributes to check security of CDN resources #11163

domi-nika60 Sep 13, 2021

Replies: 1 comment

pskowronek Aug 2, 2023

domi-nika60
Sep 13, 2021

pskowronek
Aug 2, 2023