@kaliber/build 0.0.130 → 0.0.131

Sign up to get free protection for your applications and to get access to all the features.
Files changed (2) hide show
  1. package/lib/serve.js +8 -2
  2. package/package.json +1 -1
package/lib/serve.js CHANGED
@@ -32,8 +32,14 @@ const isProduction = process.env.NODE_ENV === 'production'
32
32
  const notCached = ['html', 'txt', 'json', 'xml']
33
33
 
34
34
  if (isProduction) app.use(morgan('combined'))
35
- // hsts-headers are sent by our loadbalancer
36
- app.use(helmet(Object.assign({ hsts: false, contentSecurityPolicy: false }, helmetOptions)))
35
+ app.use(helmet(Object.assign(
36
+ {
37
+ hsts: false, // hsts-headers are sent by our loadbalancer
38
+ contentSecurityPolicy: false,
39
+ referrerPolicy: { policy: 'strict-origin-when-cross-origin' },
40
+ },
41
+ helmetOptions
42
+ )))
37
43
  app.use(compression())
38
44
  app.set('trust proxy', true)
39
45
  serveMiddleware && app.use(...[].concat(serveMiddleware))
package/package.json CHANGED
@@ -1,5 +1,5 @@
1
1
  {
2
- "version": "0.0.130",
2
+ "version": "0.0.131",
3
3
  "name": "@kaliber/build",
4
4
  "description": "Zero configuration, opinionated webpack / react build setup",
5
5
  "scripts": {