We need to look at adding Content Security Policies (CSP) to our system so that we can increase the security of the scripts we allow to be run. There shouldn't be the possibility of loading fonts outside of the fonts we ask for, or the scripts we allow run. See this article for more on what we can do with CSPs.
Source CM
We need to look at adding Content Security Policies (CSP) to our system so that we can increase the security of the scripts we allow to be run. There shouldn't be the possibility of loading fonts outside of the fonts we ask for, or the scripts we allow run. See this article for more on what we can do with CSPs.