Reply to post: Re: Don't load third-party scripts

UK ICO, USCourts.gov... Thousands of websites hijacked by hidden crypto-mining code after popular plugin pwned

Pen-y-gors Silver badge

Re: Don't load third-party scripts

Basically agree that govt sites should probably get 3rd-party plugins from a government secure CDN. But even that has problems.

Given the way government IT works, it would take at least nine months, at a cost of £250K to get an updated copy of a JS library installed on the CDN, which is a pain if three new versions have since come out, each of which fixes an important hole.

Be cheaper to write your own library - at least the holes would be your own!

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019