dunder-lsp icon indicating copy to clipboard operation
dunder-lsp copied to clipboard

Published 20 hours ago verified publisher icon hsjoberg

Helmet

Open hsjoberg opened this issue 3 years ago • 2 comments

https://github.com/fastify/fastify-helmet

hsjoberg avatar Feb 27 '21 13:02 hsjoberg

fastify-helmet is a wrapper around helmet, which has these features:

helmet.contentSecurityPolicy(options) helmet.expectCt(options) helmet.referrerPolicy(options) helmet.hsts(options) helmet.noSniff() helmet.originAgentCluster() helmet.dnsPrefetchControl(options) helmet.ieNoOpen() helmet.frameguard(options) helmet.permittedCrossDomainPolicies(options) helmet.hidePoweredBy() helmet.xssFilter()

Which are relevant for dunder?

sesam avatar Feb 28 '21 12:02 sesam

@sesam Sorry, I don't know right now. I guess this needs more research actually. My rationale for creating this issue was that maybe some fortifying lib could/should be used instead of just using raw Fastify.

helmet.hsts(options) is no-brainer at least I think.

hsjoberg avatar Feb 28 '21 14:02 hsjoberg