The art of war teaches us to rely not on the likelihood of the enemy’s not coming, but on our own readiness to receive him; not on the chance of his not attacking, but rather on the fact that we have made our position unassailable.
– Sun Tzu, ancient Chinese general
It is never wise to rely safety on the unwillingness or disability of the enemy (hacker in this case) to attack your resources. You need guarantee. If you are right that you are safe and you use an extra layer of security, then you are using that layer, however, if you do not have that extra layer, then your statement about your safety comes under the real test. And if, for any reason the test will show that you are wrong, that could be catastrophic for you and your clients.
6
solved Isn’t the use of the integrity attribute *specifically for official Bootstrap CDNs* superfluous?