The contentType header for JavaScript and HTML served from the default HubSpot File Manager CDN is changing.

What's happening?

We are changing the contentType used for JavaScript and HTML files served from HubSpot CDN domain in the File Manager. The contentType is changing to text/plain. This means when the browser goes to these URLs it will not render the HTML or process the javascript, it will display its code. This does not apply to File Manager files served through a connected domain name.

Files uploaded prior to this change will be unaffected to prevent breaking existing websites.

If you have an automation or business workflow that results in the upload of those types of files be aware you need to serve them through a connected domain.

Why is it happening?

This is a proactive security improvement to prevent illegitimate use of the File Manager that violates our terms of service.

When is it happening?

This change has already occurred.

Why the short notice?

The change does not break existing uploads. It is a preventative measure to improve the security of the HubSpot platform. We take steps every day to improve security and performance. This change we felt you should know about as there are some accounts storing these files in the File Manager.

Questions comments? let's talk about it in the developer forums.