helmet

help secure Express/Connect apps with various HTTP headers
OpenBrowse Files
expresssecurityheadersbackendcontent-security-policycross-origin-embedder-policycross-origin-opener-policycross-origin-resource-policyorigin-agent-clusterreferrer-policystrict-transport-securityx-content-type-optionsx-dns-prefetch-controlx-download-optionsx-frame-optionsx-permitted-cross-domain-policiesx-powered-byx-xss-protection

@hint/hint-x-content-type-options

hint for best practices related to the usage of the X-Content-Type-Options response header.
OpenBrowse Files
webhintwebhint-hintwebhint-recommendedx-content-type-optionsx-content-type-options-hint

guardly

Security helper methods for front-end development
OpenBrowse Files
backendcachecachingcertcertificateclickjackconnectcontentcontent-security-policycspcross-origin-embedder-policycross-origin-opener-policycross-origin-resource-policycsrfexpressframeheadershpkphstshttpskeymimetypenocachenoopenorigin-agent-clusterpinnipolicypowered-byreferrer-policysecuritysrisslstrict-transport-securityx-content-type-optionsx-dns-prefetch-controlx-download-optionsx-frame-optionsx-permitted-cross-domain-policiesx-powered-byx-xss-protectionxss

api-security-gateway

A security gateway for APIs with rate limiting, IP whitelisting, and injection prevention.
OpenBrowse Files
apirate limitingip whitelistinginjection preventionbackendcachecachingcertcertificateclickjackconnectcontentcontent-security-policycspcross-origin-embedder-policycross-origin-opener-policycross-origin-resource-policycsrfexpressframeheadershpkphstshttpskeymimetypenocachenoopenorigin-agent-clusterpinnipolicypowered-byreferrer-policysecuritysrisslstrict-transport-securityx-content-type-optionsx-dns-prefetch-controlx-download-optionsx-frame-optionsx-permitted-cross-domain-policiesx-powered-byx-xss-protectionxss

dont-sniff-mimetype

Middleware to prevent mimetype from being sniffed
OpenBrowse Files
helmetsecurityexpressconnectmimetypex-content-type-options