How wise it is to CDN-ize your static phabricator content. By first look all the static links (hosting the repos) look as follows:
Which gives a really high entropy.
Are there any security implications we should be aware of?
See T10262 for historical discussion - there's not such high entropy as it looks at first (The random things are constant per-file).
If you set up an "Alternate File Domain", the static resources will be automatically served from it - see https://secure.phabricator.com/book/phabricator/article/configuring_file_domain/ for details.