Subresource Integrity (SRI) Checks

Phase 2client sideWSTG-CLNT

Description

Counts external scripts and stylesheets lacking integrity= attributes. Without SRI hashes, a compromised CDN can silently serve malicious code to all users.

Security Impact

SRI ensures the browser refuses to execute any resource whose content has been tampered with, eliminating CDN supply-chain risk at zero infrastructure cost.

Automated Detection & AI Remediation

DygDog automatically detects Subresource Integrity (SRI) Checks using its continuous, passive scanning engine. When discovered, DygDog provides infrastructure-specific, copy-paste ready code snippets generated by frontier AI models to help you remediate the issue instantly without generic advice.

Start Free Scan