Closed hans-d closed 1 year ago
When this bug is tackled, it should be known that there are good reasons to push for preferring self-hosting Reveal.js over using a CDN for user security/privacy. At a bare minimum, a subresource integrity hash should be required--like :revealjs-integrity-{css,js}:
--and with the attributes missing, the document should fail to build with the CDN option.
We are moving away from cdnjs to jsdelivr.com
The following should work:
revealjsdir: https://cdn.jsdelivr.net/npm/reveal.js@4.1.2
I agree with @toastal using a self-hosted version is probably safer and it allows to build/preview a presentation offline which is reassuring especially with flaky Internet connection at conferences.
With https://github.com/asciidoctor/asciidoctor-reveal.js/pull/427, there is now a hardcoded path for /dist for both the script and the css. When using
:revealjsdir: https://cdnjs.cloudflare.com/ajax/libs/reveal.js/4.1.2
this breaks.