hi @thgh

I'm using this plugin in a rollup-based application which requires Cross-origin isolation support for Chrome, in order to access Shared Array Buffers.

To do so, I needed to add COEP COOP CORS headers to my server configuration and to the configuration of the server spawned by the node-livereload package.

To make this work on reloads, I needed to add crossOrigin='anonymous' to script tag that the plugin injects in html page.

I forked the plugin and did minor changes to achieve this, sending a PR.

Let me know if this is acceptable or if there are any changes required, many thanks.

F