Changelog
7.0.0 - 2023-05-06
Cross-Origin-Embedder-Policy
middleware is now disabled by default. See #411Expect-CT
is no longer part of Helmet. If you still need it, you can use the expect-ct
package. See #378Changelog
6.2.0 - 2023-05-06
strictTransportSecurity
for the Strict-Transport-Security
header, instead of hsts
)