Securing a source served by a public CDN
How to use public CDNs to serve static dependencies while limiting the risk of source corruption.
(The article dates from 2016, browser compatibility which is mentioned in the article has not been a concern since)