requiring google maps JS to enable editing fields on newly created post? That’s a tad abusive. Whatever JS you need to enable post creation/editing should ONLY reside within WP owned domains.
These ‘free’ services merely better enable cross-domain tracking of users.
for third party hosted bits like fonts.google, google api, yahoo api CACHE THEM LOCALLY. Update your cache when remotes bit changes.
That is IFF you value user security?