It seems like there could be some sort of cross origin cache header that could b... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		doctoboggan on March 26, 2022 \| parent \| context \| favorite \| on: Python 3.11 in the Web Browser It seems like there could be some sort of cross origin cache header that could be set? That way by default you couldn't store in a global cache but server operators would be able to mark certain resources that could be.

modeless on March 26, 2022 | [–]

Server operators would just set that header on everything. There's no downside for them. The privacy issue only impacts users and it would still exist even if only a subset of libraries were shared.

zdw on March 27, 2022 | [–]

One proposed solution is checksums on CDN provided javascript:

https://w3c.github.io/webappsec-subresource-integrity/

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact