Downloading resources from CDNs (esp. those who are behind Cloudflare) is questionable from a users' privacy perspective. Technically, they even have to be mentioned in the privacy statement as of German law here.

What do you think about adding a config option for not relying on external providers. When you don't want to update all dependencies in your repository, I'd even be fine manually overriding the URLs and updating them manually.

It'd be nice to hear your opinion and if this project is suitable for people caring about privacy at all, or if we should rather avoid it.