GitHub emphasizes the importance of using a content delivery network (CDN) for efficiently distributing static assets while acknowledging the potential security risks, such as Cross-Site Scripting (XSS) vulnerabilities, associated with relying on third-party services. Although CDNs enhance web performance by serving content from geographically proximate data centers, a compromised CDN could pose significant security threats by distributing malicious JavaScript. To mitigate such risks, Subresource Integrity (SRI) is a new browser technology that allows websites to verify the integrity of fetched resources by comparing cryptographic digests, thereby preventing compromised CDNs from becoming XSS vectors. GitHub has actively implemented various security measures, including SRI and Content Security Policy, to protect against vulnerabilities, and encourages other websites to adopt these practices to enhance overall web safety. The article also notes the current state of browser support for SRI, with Google Chrome having implemented it and Mozilla Firefox planning to do so, while Microsoft Edge considers future support.