		# Changelog

		## 6.1.5 - 2023-04-11

		### Fixed

		- Fixed yet another issue with TypeScript exports. See [#420](https://github.com/helmetjs/helmet/pull/418)

		## 6.1.4 - 2023-04-10

		### Fixed

		- Fix another issue with TypeScript default exports. See [#418](https://github.com/helmetjs/helmet/pull/418)

		## 6.1.3 - 2023-04-10

		### Fixed

		- Fix issue with TypeScript default exports. See [#417](https://github.com/helmetjs/helmet/pull/417)

		## 6.1.2 - 2023-04-09

		### Fixed

		- Retored `main` to package to help with some build tools

		## 6.1.1 - 2023-04-08

		### Fixed

		- Fixed missing package metadata

		## 6.1.0 - 2023-04-08

		### Changed

		- Improve support for various TypeScript setups, including "nodenext". See [#405](https://github.com/helmetjs/helmet/pull/405)

		## 6.0.1 - 2022-11-29
		@@ -4,0 +40,0 @@

package.json

		{
		"name": "helmet",
		"author": "Adam Baldwin <adam@npmjs.com> (https://evilpacket.net)",
		"contributors": [
		"Evan Hahn <me@evanhahn.com> (https://evanhahn.com)",
		"Ameen Abdeen <ameen.abdeen.se@gmail.com>"
		],
		"description": "help secure Express/Connect apps with various HTTP headers",
		"version": "6.0.1",
		"keywords": [
		"express",
		"security",
		"headers",
		"backend"
		],
		"homepage": "https://helmetjs.github.io/",
		"bugs": {
		"url": "https://github.com/helmetjs/helmet/issues",
		"email": "me@evanhahn.com"
		},
		"repository": {
		"type": "git",
		"url": "git://github.com/helmetjs/helmet.git"
		},
		"engines": {
		"node": ">=14.0.0"
		},
		"devDependencies": {
		"@rollup/plugin-typescript": "^8.3.3",
		"@types/connect": "^3.4.35",
		"@types/jest": "^28.1.6",
		"@types/supertest": "^2.0.12",
		"@typescript-eslint/eslint-plugin": "^5.30.7",
		"@typescript-eslint/parser": "^5.30.7",
		"connect": "^3.7.0",
		"eslint": "^8.20.0",
		"jest": "^28.1.3",
		"prettier": "^2.7.1",
		"rollup": "^2.77.0",
		"supertest": "^6.2.4",
		"ts-jest": "^28.0.7",
		"typescript": "^4.7.4"
		},
		"scripts": {
		"pretest": "npm run lint",
		"prepublishOnly": "npm run build-helmet",
		"lint": "npm run lint:eslint && npm run lint:prettier",
		"lint:eslint": "eslint .",
		"lint:prettier": "prettier --check .",
		"format": "prettier --write .",
		"clean": "node ./bin/clean.js",
		"build-helmet": "npm run clean && node ./bin/build-helmet.js && prettier --write --config .prettierrc-dist.cjs --ignore-path /dev/null dist",
		"build-middleware-package": "npm run clean && tsc --emitDeclarationOnly -p tsconfig-types.json && node ./bin/build-middleware-package.js",
		"test": "jest"
		},
		"license": "MIT",
		"type": "module",
		"main": "./dist/cjs/index.js",
		"module": "./dist/esm/index.js",
		"types": "./dist/types/index.d.ts",
		"exports": {
		".": {
		"import": "./dist/esm/index.js",
		"require": "./dist/cjs/index.js",
		"types": "./dist/types/index.d.ts"
		}
		}
		"name": "helmet",
		"description": "help secure Express/Connect apps with various HTTP headers",
		"version": "6.1.5",
		"author": "Adam Baldwin <adam@npmjs.com> (https://evilpacket.net)",
		"contributors": [
		"Evan Hahn <me@evanhahn.com> (https://evanhahn.com)"
		],
		"homepage": "https://helmetjs.github.io/",
		"bugs": {
		"url": "https://github.com/helmetjs/helmet/issues",
		"email": "me@evanhahn.com"
		},
		"repository": {
		"type": "git",
		"url": "git://github.com/helmetjs/helmet.git"
		},
		"license": "MIT",
		"keywords": [
		"express",
		"security",
		"headers",
		"backend"
		],
		"engines": {
		"node": ">=14.0.0"
		},
		"exports": {
		"import": "./index.mjs",
		"require": "./index.cjs"
		},
		"main": "./index.cjs",
		"types": "./index.d.cts"
		}

README.md

		# Helmet

		[![npm version](https://badge.fury.io/js/helmet.svg)](https://badge.fury.io/js/helmet)
		[![FOSSA Status](https://app.fossa.io/api/projects/git%2Bhttps%3A%2F%2Fgithub.com%2Fhelmetjs%2Fhelmet.svg?type=shield)](https://app.fossa.io/projects/git%2Bhttps%3A%2F%2Fgithub.com%2Fhelmetjs%2Fhelmet?ref=badge_shield)

		Helmet helps you secure your Express apps by setting various HTTP headers. _It's not a silver bullet_, but it can help!
		@@ -77,3 +74,3 @@

		The top-level `helmet` function is a wrapper around 15 smaller middlewares.
		The top-level `helmet` function is a wrapper around 14 smaller middlewares.

		@@ -100,3 +97,2 @@ In other words, these two code snippets are equivalent:
		app.use(helmet.dnsPrefetchControl());
		app.use(helmet.expectCt());
		app.use(helmet.frameguard());
		@@ -103,0 +99,0 @@ app.use(helmet.hidePoweredBy());

SECURITY.md

		@@ -5,4 +5,4 @@ # Security issue reporting & disclosure process

		Email Evan Hahn at <me@evanhahn.com> or Adam Baldwin at <adam@npmjs.com>.
		Contact Evan Hahn at <me@evanhahn.com> or Adam Baldwin at <adam@npmjs.com>. Evan Hahn [can also be reached in other ways](https://evanhahn.com/contact).

		We will try to communicate in a timely manner and address your concerns.

dist/cjs/index.js

dist/cjs/package.json

dist/esm/index.js

dist/types/index.d.ts

dist/types/middlewares/content-security-policy/index.d.ts

dist/types/middlewares/cross-origin-embedder-policy/index.d.ts

dist/types/middlewares/cross-origin-opener-policy/index.d.ts

dist/types/middlewares/cross-origin-resource-policy/index.d.ts

dist/types/middlewares/expect-ct/index.d.ts

dist/types/middlewares/origin-agent-cluster/index.d.ts

dist/types/middlewares/referrer-policy/index.d.ts

dist/types/middlewares/strict-transport-security/index.d.ts

dist/types/middlewares/x-content-type-options/index.d.ts

dist/types/middlewares/x-dns-prefetch-control/index.d.ts

dist/types/middlewares/x-download-options/index.d.ts

dist/types/middlewares/x-frame-options/index.d.ts

dist/types/middlewares/x-permitted-cross-domain-policies/index.d.ts

dist/types/middlewares/x-powered-by/index.d.ts

dist/types/middlewares/x-xss-protection/index.d.ts

LICENSE

Sorry, the diff of this file is not supported yet

helmet - npm Package Compare versions

New alerts

Fixed alerts

Improved metrics

Worsened metrics