Hello, this might seem like nitpicking but I think it makes sense to always use https for external assets, no matter what. I am actually using CSP and with the current solution I have to whitelist the fontawesome asset twice, the http version for dev and test, plus the https version for production. There is no wildcard for the scheme. Anyway I think it is good practice to force https.
Hello, this might seem like nitpicking but I think it makes sense to always use
https
for external assets, no matter what. I am actually using CSP and with the current solution I have to whitelist the fontawesome asset twice, the http version for dev and test, plus the https version for production. There is no wildcard for the scheme. Anyway I think it is good practice to force https.