Generate Integrity Hashes
Enter CDN URLs below. We will attempt to fetch them and calculate SHA-256, SHA-384, and SHA-512 hashes. You can enter multiple URLs separated by newlines.
Verify Existing Hash
Compare File Hashes
Drag and drop file here
or click to browse
SHA-384
Why use Subresource Integrity?
Subresource Integrity (SRI) is a security feature that enables browsers to verify that resources they fetch (for example, from a CDN) are delivered without unexpected manipulation. It works by allowing you to provide a cryptographic hash that a fetched resource must match.
- Guards against comprised CDNs: If a CDN is hacked and serves a malicious script, the browser will refuse to execute it because the hash won't match.
- Prevents unwanted updates: Ensures that a file hasn't been quietly updated with breaking changes.
- Easy to implement: Just add the
integrityandcrossorigin="anonymous"attributes to your<script>or<link>tags.
Example usage:
<script src="https://example.com/example-framework.js" integrity="sha384-[HASH]" crossorigin="anonymous"></script>