Closed grantmcdermott closed 10 months ago
I recently ran into a security issue/policy at work, due to calling Google Font's external CDN.
Attacker who has already compromised the CDN can replace the resource to malicious code which will affect the security of web application
Seems highly unlikely with Google Fonts, but probably just easier to avoid the import for others in a similar situation.
(Would also have the minor upside of slightly faster rendering times.)
I recently ran into a security issue/policy at work, due to calling Google Font's external CDN.
Seems highly unlikely with Google Fonts, but probably just easier to avoid the import for others in a similar situation.