gkatsev
commented
4 years ago I'm not sure it's possible to do since the iframe_api isn't something that we own and youtube may change it whenever they want.
Open RoopanV opened 4 years ago
gkatsev
commented
4 years ago I'm not sure it's possible to do since the iframe_api isn't something that we own and youtube may change it whenever they want.
Hi, Our audit team find SRI not implement while loading script from "https://www.youtube.com/iframe_api" using "loadScript" method during a vulnerability scan. Can you please check the possibility of adding the integrity hash.