polyfill.io library is no longer considered safe to use

I think this priority and issue tag makes sense.

Since it's about a 3rd party library this can be fixed in public without a security advisory, but should ideally be addressed quickly with a code change and new release(s).

This was originally "minor" since polyfill is just mentioned in comments, but it would be good to update/remove that even in a comment to avoid accidentally using the wrong cdn for the files.

abhiyanshu_rawat → made their first commit to this issue’s fork.

Hi @greggles,
I installed the theme locally and didn't find any comments related to polyfill.io.
However, polyfill-io is present only in the .js.map file, and the changes related to it are not in the base file of the map file.
Please refer to the attached screenshot for more clarity.

I believe we can ignore it or If you have any suggestions, please let us know so that we can proceed accordingly. Thanks.

Hello,
thank you for all your feedback, we will correct this and update the theme with the new version of DSFR 1.12.1.

We have fixed the problem in our theme and reported it to the maintainers of the DSFR library, who will remove references to Polyfill in their next version.

Automatically closed - issue fixed for 2 weeks with no activity.