Using SRI for ES6 module import?

privacysecurity

(rugk) #1

Are there any ideas to add a way to add Subresource Integrity for ES6 modules, so you can import a JS module and ensure its integrity?

IMHO it is very important to preserve that new security feature for this new loading method.

Also asked on Stackoverflow.


(Jens Hausdorf) #2

I already asked that over a year ago: https://stackoverflow.com/questions/45804660/is-it-possible-to-use-subresource-integrity-with-es6-module-imports