/plushcap/analysis/cloudflare/automatically-replacing-polyfill-io-links-with-cloudflares-mirror-for-a-safer-internet

Automatically replacing polyfill.io links with Cloudflare’s mirror for a safer Internet

What's this blog post about?

Polyfill.io, a popular JavaScript library service, has been reported to be used for injecting malicious code into users' browsers, posing a threat to the internet due to its widespread use. To mitigate this risk, Cloudflare has released an automatic JavaScript URL rewriting service that replaces any link to polyfill.io with a link to their mirror under cdnjs. This feature is automatically activated for free plan customers and can be turned on with a single click for paid plan customers. It is recommended to remove the use of polyfill.io and replace it with a secure alternative, even if not using Cloudflare.

Company
Cloudflare

Date published
June 26, 2024

Author(s)
Matthew Prince, John Graham-Cumming, Michael Tremante

Word count
1287

Language
English

Hacker News points
152


By Matt Makai. 2021-2024.