New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details
Socket
Book a DemoSign in
Socket
Book a DemoSign in

@sctg/nocors-azure

Package Overview
Dependencies
Maintainers
1
Versions
5
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@sctg/nocors-azure

Minimalist noCors proxy for servless app

latest
Source
npmnpm
Version
0.9.16
Version published
Maintainers
1
Created
Source

Simplest noCors proxy for Serverless(Azure/Cloudflare) Web App

This is a very minimalistic proxy for enabling CORS on non CORS enabled sites.

For Azure Static Web Apps

npm package

https://www.npmjs.com/package/@sctg/nocors-pages
You must use it in the /api/package.json file, there is no need to modify the main package.json

demo

Source code.
https://nocors.kiik.cf/api/proxy?url=https://www.example.org

usage

Create a new api entry with VSCode Azure tools or manually.

cd api
npm i --save @sctg/nocors-azure
npm i --save got
npm i --save @azure/functions

In the index.ts of the new api route

import {
  AzureFunction,
  Context,
  HttpRequest,
} from "@azure/functions";
import { proxyAzureRequest } from "@sctg/nocors-azure";
const WHITELIST_REGEX=".*" // DANGEROUS TAKE CARE OF THE WHITELIST

const httpTrigger: AzureFunction = async function (
  context: Context,
  req: HttpRequest
): Promise<void> {
  const proxiedRequest = await proxyAzureRequest(WHITELIST_REGEX, req);
  context.res = {
    status: proxiedRequest.status,
    body: proxiedRequest.body,
    headers: proxiedRequest.headers,
  };
};

export default httpTrigger;

Now you can proxy your API requests to non CORS enabled site via:
https://YOURSITE.TLD/api/proxy?url=https://NOCORS.WEBSITE/…/API/…/ . Be extremely attentive to the WHITELIST_REGEX const as it can opens your proxy to anyone
Prefer something like

const WHITELIST_REGEX="https://NOCORS.WEBSITE/.*"

For Coudflare Pages

npm package

https://www.npmjs.com/package/@sctg/nocors-pages

demo

Source code.
https://nocors.pages.dev/proxy?url=https://www.example.org
check the header Via:noCors-for-serverless v…

usage

npm i --save @sctg/nocors-pages
npm i -D --save @cloudflare/workers-types

create a /functions/proxy.ts file

import {proxyPagesRequest} from "@sctg/nocors-pages"
const WHITELIST_REGEX=".*"  // DANGEROUS TAKE CARE OF THE WHITELIST
export const onRequest: PagesFunction = async (context) => {
  return proxyPagesRequest(context,whitelistConf.regex)
};

Now you can proxy your API requests to non CORS enabled site via:
https://YOURSITE.TLD/proxy?url=https://NOCORS.WEBSITE/…/API/…/
Be extremely attentive to the WHITELIST_REGEX const as it can opens your proxy to anyone
Prefer something like

const WHITELIST_REGEX="https://NOCORS.WEBSITE/.*"

Keywords

cors
azure
cloudflare

FAQs

Package last updated on 27 Nov 2022

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Socket Named Top Sales Organization by RepVue

Company News

Socket Named Top Sales Organization by RepVue

Socket won two 2026 Reppy Awards from RepVue, ranking in the top 5% of all sales orgs. AE Alexandra Lister shares what it's like to grow a sales career here.

By Sarah Gooding  -  Apr 17, 2026
Socket Selected for OpenAI's Cybersecurity Grant Program

Company News

/

Security News

Socket Selected for OpenAI's Cybersecurity Grant Program

Socket is an initial recipient of OpenAI's Cybersecurity Grant Program, which commits $10M in API credits to defenders securing open source software.

By Sarah Gooding  -  Apr 16, 2026