File tree Expand file tree Collapse file tree 1 file changed +2
-2
lines changed
specs/subresourceintegrity Expand file tree Collapse file tree 1 file changed +2
-2
lines changed Original file line number Diff line number Diff line change @@ -332,8 +332,8 @@ One should note that being a [secure document][] (e.g. a document delivered
332332over HTTPS) is not necessary for the use of integrity validation. Because
333333resource integrity is only an application level security tool, and it does not
334334change the security state of the user agent, a [ secure document] is
335- unnecessary. However, if integrity is used in other than a [ secure document] [ ] (e.g.
336- a document delivered over HTTP), authors should be aware that the integrity
335+ unnecessary. However, if integrity is used in something other than a [ secure document] [ ]
336+ (e.g. a document delivered over HTTP), authors should be aware that the integrity
337337provides <em >no security guarantees at all</em >. For this reason, authors should
338338only deliver integrity metadata on a [ potentially secure origin] [ ] . See
339339[ Non-secure contexts remain non-secure] [ ] for more discussion.
You can’t perform that action at this time.
0 commit comments