Safari has a bug where cross origin anonymous doesn't send along credentials on the same origin: https://bugs.webkit.org/show_bug.cgi?id=171566

I need certain cookies when fetching JS resources. Could you add an option to not set any cross origin attribute at all for the preload?