[mananaysiempre]

Including the hash is exactly what subresource integrity[1] does (it was even designed for a CDN context originally), but so far people haven’t figured out a sufficiently non-leaky design to use it for caching[2,3].

[1] https://developer.mozilla.org/en-US/docs/Web/Security/Subres...

[2] https://github.com/w3c/webappsec-subresource-integrity/issue...

[3] https://hillbrad.github.io/sri-addressable-caching/sri-addre...