Integrity Checking the autoupdated sdk

App & System Services Apple Pay
by_ptr OP
Created Apr ’26
Replies 1
Boosts 0
Views 298
Participants 2

Hi everyone,

Is there a way to check the integrity of the auto updating version of the Apple Pay JS SDK?

SRI can only be used for the semantic version.

Any help/suggestion is appreciated.

Answered by DTS Engineer in 893687022

Hi @by_ptr,

You wrote:

Is there a way to check the integrity of the auto updating version of the Apple Pay JS SDK?

Integrity checks, such as Subresource Integrity (SRI), are not recommended for the auto-updating version of the Apple Pay JS SDK (1.latest). This is because the contents of the auto-updating SDK are subject to change, which would break any integrity checks. Integrity checks are a best practice when loading semantic versions of the SDK from a third-party source.

To learn more, see the following documentation:

Loading the latest version of the Apple Pay JS SDK

https://developer.apple.com/documentation/applepayontheweb/loading-the-latest-version-of-apple-pay-js

Cheers,

Paris X Pinkney |  WWDR | DTS Engineer

Replies  1
Boosts  0
Views  298
Participants  2
DTS Engineer OP
Apple
3d
Recommended

Hi @by_ptr,

You wrote:

Is there a way to check the integrity of the auto updating version of the Apple Pay JS SDK?

Integrity checks, such as Subresource Integrity (SRI), are not recommended for the auto-updating version of the Apple Pay JS SDK (1.latest). This is because the contents of the auto-updating SDK are subject to change, which would break any integrity checks. Integrity checks are a best practice when loading semantic versions of the SDK from a third-party source.

To learn more, see the following documentation:

Loading the latest version of the Apple Pay JS SDK

https://developer.apple.com/documentation/applepayontheweb/loading-the-latest-version-of-apple-pay-js

Cheers,

Paris X Pinkney |  WWDR | DTS Engineer

Integrity Checking the autoupdated sdk
First post date Last post date
 
 
Q