Subresource Integrity and Upgrade-Insecure-Requests are Now Supported in Microsoft Edge
Troy Hunt
MAY 1, 2018
Cross site request forgery is a perfect example; here we have a situation where the browser will happily send cookies along with requests (including auth cookies) thus issuing said request under the identity of the logged in user. And yes, "same-site" cookies will fix this but as of today, only Chrome supports it.). (And
Let's personalize your content