@middy/http-security-headers 7.1.0 → 7.1.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +1 -1
- package/index.d.ts +7 -4
- package/package.json +4 -3
package/README.md
CHANGED
|
@@ -1,5 +1,5 @@
|
|
|
1
1
|
<div align="center">
|
|
2
|
-
<h1>Middy http-security-headers middleware</h1>
|
|
2
|
+
<h1>Middy `http-security-headers` middleware</h1>
|
|
3
3
|
<img alt="Middy logo" src="https://raw.githubusercontent.com/middyjs/middy/main/docs/img/middy-logo.svg"/>
|
|
4
4
|
<p><strong>HTTP security headers middleware for the middy framework, the stylish Node.js middleware engine for AWS Lambda</strong></p>
|
|
5
5
|
<p>Applies best practice security headers to responses. It's a simplified port of [HelmetJS](https://helmetjs.github.io/). See HelmetJS documentation for more details.</p>
|
package/index.d.ts
CHANGED
|
@@ -2,16 +2,18 @@
|
|
|
2
2
|
// SPDX-License-Identifier: MIT
|
|
3
3
|
import type middy from "@middy/core";
|
|
4
4
|
|
|
5
|
-
interface Options {
|
|
5
|
+
export interface Options {
|
|
6
6
|
dnsPrefetchControl?: {
|
|
7
7
|
allow?: boolean;
|
|
8
8
|
};
|
|
9
9
|
frameOptions?: {
|
|
10
10
|
action?: string;
|
|
11
11
|
};
|
|
12
|
-
poweredBy?:
|
|
13
|
-
|
|
14
|
-
|
|
12
|
+
poweredBy?:
|
|
13
|
+
| {
|
|
14
|
+
server: string;
|
|
15
|
+
}
|
|
16
|
+
| boolean;
|
|
15
17
|
strictTransportSecurity?: {
|
|
16
18
|
maxAge?: number;
|
|
17
19
|
includeSubDomains?: boolean;
|
|
@@ -42,6 +44,7 @@ interface Options {
|
|
|
42
44
|
policy?: string;
|
|
43
45
|
};
|
|
44
46
|
permissionsPolicy?: Record<string, string>;
|
|
47
|
+
reportingEndpoints?: Record<string, string>;
|
|
45
48
|
permittedCrossDomainPolicies?: {
|
|
46
49
|
policy?: string;
|
|
47
50
|
};
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@middy/http-security-headers",
|
|
3
|
-
"version": "7.1.
|
|
3
|
+
"version": "7.1.1",
|
|
4
4
|
"description": "Applies best practice security headers to responses. It's a simplified port of HelmetJS",
|
|
5
5
|
"type": "module",
|
|
6
6
|
"engines": {
|
|
@@ -69,9 +69,10 @@
|
|
|
69
69
|
},
|
|
70
70
|
"gitHead": "7a6c0fbb8ab71d6a2171e678697de9f237568431",
|
|
71
71
|
"dependencies": {
|
|
72
|
-
"@middy/util": "7.1.
|
|
72
|
+
"@middy/util": "7.1.1"
|
|
73
73
|
},
|
|
74
74
|
"devDependencies": {
|
|
75
|
-
"@middy/core": "7.1.
|
|
75
|
+
"@middy/core": "7.1.1",
|
|
76
|
+
"@types/aws-lambda": "^8.0.0"
|
|
76
77
|
}
|
|
77
78
|
}
|