What are the security implications of using a web font hosted by a 3rd party provider?

What are the security implications of using a web font hosted by a 3rd party provider, such as Google or Adobe?

Solution

Google Fonts offers 3 methods of including their fonts on your page: through the link element, through the CSS @import statement and through external JavaScript.

There should be no security problems if you include your stylesheet using the link element with a type attribute set to "text/css" or through the css @import statement; the browser would only attempt to read this as CSS and ignore anything which is invalid.

There would be potential security risks in including the fonts through external JavaScript, but this all boils down to trust; do you trust Google or Adobe to host JavaScript for you?

When did C allow casting constants and variables to struct for assignment?
Why in C can I initialize more values than the size of an array?
Using c to create a file and write+read to it, what went wrong?
Does write system call need the data to be read to give >-1 return?
Difference between fgetc() and read() function in C
How can I get to know the IP address for interfaces in C?
read fails with EFAULT
In this case, how to achieve modularity and information hiding at the same time?
Are global variables always initialized to zero in C?
OpenGL function calls seemingly affecting unrelated data
What Values of Variables x and y Will Produce Incorrect Results When Testing for Overflow After Subtraction of x-y in the Following Program?
How to write a general-type queue library in c?
Which gcc and g++ version support which standard of c and c++?
How to dereference a member in a struct whose definition is not visible?
How to name a type in a meaningful way?
What are Vectors and < > in C?
Why does 1.0/100.0 == 0.1/10.0 give True?
How to organize the receive msg and user current input in C network such that it's clean
Using inclusive scan syntax in OpenMP in the C language
Unable to understand context in book "OOP in C" by Axel Schreiner
variable-length array in struct with TI compiler in C (socket programming)
A faster way to test 32bpp DDBs for a valid Alpha channel
How can I compile the zephyr example-application as a freestanding application?
Why does my forked process sometimes overwrite data in a file?
_Generic in C needs typecasting?
Declaring/defining an unused variable changes the output from an unrelated variable
How to use gdb to explore the stack/heap?
How can I read an input string of unknown length?
Confused by difference between expression inside if and expression outside if
Fast Arc Cos algorithm?