Skip to content

Releases: mcansh/http-helmet

@mcansh/[email protected]

08 Jan 20:12
@github-actions github-actions
@mcansh/[email protected]
383e413
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
@mcansh/[email protected] Latest
Latest

Minor Changes

  • 0908d16: update react and react-dom peerDependencies to support react 18 and react 19
Assets 2
Loading

@mcansh/[email protected]

02 Jan 17:43
@github-actions github-actions
@mcansh/[email protected]
350c473
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
@mcansh/[email protected]

Patch Changes

  • 4105e69: add support for interest-cohort to permissions policy
Assets 2
Loading

@mcansh/[email protected]

26 Dec 22:14
@github-actions github-actions
@mcansh/[email protected]
05935e6
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
@mcansh/[email protected]

Patch Changes

  • 81a7d9e: remove dependency on node:crypto using the crypto global instead
Assets 2
Loading

@mcansh/[email protected]

01 Dec 20:49
@github-actions github-actions
@mcansh/[email protected]
d045803
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
@mcansh/[email protected]

Minor Changes

  • af61382: move createNonce helper function to main import
    add type to imports where missing

Patch Changes

  • 4597846: dont allow mixing kebab-case and camelCase csp keys and make it so csp isnt required
Assets 2
Loading

@mcansh/[email protected]

28 Nov 03:23
@github-actions github-actions
@mcansh/[email protected]
746a36a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
@mcansh/[email protected]

Patch Changes

  • 4597846: dont allow mixing kebab-case and camelCase csp keys and make it so csp isnt required
Assets 2
Loading

@mcansh/[email protected]

13 Sep 01:12
@github-actions github-actions
@mcansh/[email protected]
2a3fa75
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
@mcansh/[email protected]

Patch Changes

  • f0a2ee3: feat: only allow using kebab or camel case, not both
Assets 2
Loading

@mcansh/[email protected]

13 Sep 00:46
@github-actions github-actions
@mcansh/[email protected]
dcac3ba
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
@mcansh/[email protected]

Minor Changes

  • 9b7cc24: feat: filter out falsy values from csp

    // before
createContentSecurityPolicy({
  "connect-src": [undefined, "'self'", undefined].filter((x): x is string => !!x),
});
// => `"connect-src 'self'"`

// after
createContentSecurityPolicy({
  "connect-src": [undefined, "'self'", null],
});

// => `"connect-src 'self'"`

Patch Changes

  • 9b7cc24: apply upgrade-insecure-requests when using kebab case to set it

    previously was only applying the upgrade-insecure-requests directive when using camelCase (upgradeInsecureRequests)

Assets 2
Loading

@mcansh/[email protected]

17 Mar 01:13
@github-actions github-actions
@mcansh/[email protected]
2d1f4a3
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
@mcansh/[email protected]

Patch Changes

  • c4b0b6a: allow using kebab case keys for csp

    let secureHeaders = createSecureHeaders({
  "Content-Security-Policy": {
    "default-src": ["'self'"],
    "img-src": ["'self'", "data:"],
  },
});

  • 1cee380: allow setting Content-Security-Policy-Report-Only

    let secureHeaders = createSecureHeaders({
  "Content-Security-Policy-Report-Only": {
    "default-src": ["'self'"],
    "img-src": ["'self'", "data:"],
  },
});
Assets 2
Loading

@mcansh/[email protected]

07 Feb 02:15
@github-actions github-actions
@mcansh/[email protected]
4c3c0f8
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
@mcansh/[email protected]

Patch Changes

  • 8e1c380: bump dependencies to latest versions
  • 6919888: add nonce generation, context provider, and hook for React and Remix apps
Assets 2
Loading

@mcansh/[email protected]

11 Jan 19:20
@github-actions github-actions
@mcansh/[email protected]
3ff8ef9
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
@mcansh/[email protected]

Patch Changes

  • ba87f33: add funding to package.json
Assets 2
Loading