next-security - npm Package Compare versions

Comparing version 1.1.0 to 1.1.1

build/main/index.d.ts

@@ -1,3 +0,3 @@
-import { SecurityConfig, SecurityHeader, SecurityHeaders } from './types';
-export declare const nextSecurity: (config: SecurityConfig) => {
+import { SecurityHeader, SecurityHeaders } from './types';
+export declare const headers: (securityHeaders: SecurityHeaders) => {
     headers(): Promise<{
@@ -9,2 +9,2 @@ source: string;
 };
-export declare const generateSecurityHeaders: (headers: SecurityHeaders) => SecurityHeader[];
+export declare const createHeaders: (headers: SecurityHeaders) => SecurityHeader[];

build/main/index.js

 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.generateSecurityHeaders = exports.nextSecurity = void 0;
-const defaultConfig_1 = require("./defaultConfig");
+exports.createHeaders = exports.headers = void 0;
+const headers_1 = require("./headers");
 const types_1 = require("./types");
 const utils_1 = require("./utils");
-const nextSecurity = (config) => {
+const headers = (securityHeaders) => {
     return {
@@ -13,14 +13,14 @@ async headers() {
                     source: '/(.*)',
-                    headers: (0, exports.generateSecurityHeaders)(config === null || config === void 0 ? void 0 : config.headers),
+                    headers: (0, exports.createHeaders)(securityHeaders),
                 },
             ];
         },
-        poweredByHeader: defaultConfig_1.defaultConfig.headers.xPoweredBy,
+        poweredByHeader: headers_1.defaultHeaders.xPoweredBy,
     };
 };
-exports.nextSecurity = nextSecurity;
-const generateSecurityHeaders = (headers) => {
+exports.headers = headers;
+const createHeaders = (headers) => {
     const localHeaders = !headers
-        ? defaultConfig_1.defaultConfig.headers
-        : (0, utils_1.defuReplaceArray)(Object.assign({}, headers), Object.assign({}, defaultConfig_1.defaultConfig.headers));
+        ? headers_1.defaultHeaders
+        : (0, utils_1.defuReplaceArray)(Object.assign({}, headers), Object.assign({}, headers_1.defaultHeaders));
     const headersArray = [];
@@ -38,3 +38,3 @@ for (const header in localHeaders) {
 };
-exports.generateSecurityHeaders = generateSecurityHeaders;
-//# sourceMappingURL=data:application/json;base64,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
+exports.createHeaders = createHeaders;
+//# sourceMappingURL=data:application/json;base64,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

build/main/types.d.ts

@@ -1,4 +0,1 @@
-export type SecurityConfig = {
-    headers: SecurityHeaders;
-};
 export type SecurityHeaders = {
@@ -5,0 +2,0 @@ crossOriginResourcePolicy?: CrossOriginResourcePolicyValue | false;

build/main/types.js

@@ -20,2 +20,2 @@ "use strict";
 };
-//# sourceMappingURL=data:application/json;base64,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
+//# sourceMappingURL=data:application/json;base64,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

build/module/index.d.ts

@@ -1,3 +0,3 @@
-import { SecurityConfig, SecurityHeader, SecurityHeaders } from './types';
-export declare const nextSecurity: (config: SecurityConfig) => {
+import { SecurityHeader, SecurityHeaders } from './types';
+export declare const headers: (securityHeaders: SecurityHeaders) => {
     headers(): Promise<{
@@ -9,2 +9,2 @@ source: string;
 };
-export declare const generateSecurityHeaders: (headers: SecurityHeaders) => SecurityHeader[];
+export declare const createHeaders: (headers: SecurityHeaders) => SecurityHeader[];

build/module/index.js

@@ -1,5 +0,5 @@
-import { defaultConfig } from './defaultConfig';
+import { defaultHeaders } from './headers';
 import { SECURITY_HEADER_NAMES, } from './types';
 import { defuReplaceArray, getHeaderValueFromOptions } from './utils';
-export const nextSecurity = (config) => {
+export const headers = (securityHeaders) => {
     return {
@@ -10,13 +10,13 @@ async headers() {
                     source: '/(.*)',
-                    headers: generateSecurityHeaders(config?.headers),
+                    headers: createHeaders(securityHeaders),
                 },
             ];
         },
-        poweredByHeader: defaultConfig.headers.xPoweredBy,
+        poweredByHeader: defaultHeaders.xPoweredBy,
     };
 };
-export const generateSecurityHeaders = (headers) => {
+export const createHeaders = (headers) => {
     const localHeaders = !headers
-        ? defaultConfig.headers
-        : defuReplaceArray({ ...headers }, { ...defaultConfig.headers });
+        ? defaultHeaders
+        : defuReplaceArray({ ...headers }, { ...defaultHeaders });
     const headersArray = [];
@@ -34,2 +34,2 @@ for (const header in localHeaders) {
 };
-//# sourceMappingURL=data:application/json;base64,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
+//# sourceMappingURL=data:application/json;base64,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

build/module/types.d.ts

@@ -1,4 +0,1 @@
-export type SecurityConfig = {
-    headers: SecurityHeaders;
-};
 export type SecurityHeaders = {
@@ -5,0 +2,0 @@ crossOriginResourcePolicy?: CrossOriginResourcePolicyValue | false;

build/module/types.js

@@ -17,2 +17,2 @@ export const SECURITY_HEADER_NAMES = {
 };
-//# sourceMappingURL=data:application/json;base64,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
+//# sourceMappingURL=data:application/json;base64,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

package.json

 {
   "name": "next-security",
-  "version": "1.1.0",
+  "version": "1.1.1",
   "description": "Security plugin for Next.js based on OWASP and Helmet",
@@ -40,3 +40,4 @@ "main": "build/main/index.js",
     "reset-hard": "git clean -dfx && git reset --hard && yarn",
-    "prepare-release": "run-s reset-hard test cov:check doc:html version doc:publish"
+    "prepare-release": "run-s reset-hard test cov:check doc:html version doc:publish",
+    "stackblitz": "cd .stackblitz && npm install && npm run dev"
   },
@@ -43,0 +44,0 @@ "engines": {

README.md

@@ -8,4 +8,6 @@ # next-security
 
-Security plugin for Next.js based on OWASP and Helmet.
+> Security plugin for Next.js based on [OWASP Top 10](https://cheatsheetseries.owasp.org/cheatsheets/Nodejs_Security_Cheat_Sheet.html#nodejs-security-cheat-sheet) and [helmet](https://helmetjs.github.io/) that adds security response headers.
 
+- [👾  Playground](https://stackblitz.com/github/baroshem/next-security?file=.stackblitz%2Fnext.config.js)
+
 ## Features
@@ -16,5 +18,5 @@
 - `[Coming soon]` Content Security Policy (CSP) for SSG apps
-- `[Coming soon]`Request Size limiter
-- `[Coming soon]`Cross Site Scripting (XSS) Validation
-- `[Coming soon]`Cross-Origin Resource Sharing (CORS) support
+- `[Coming soon]` Request Size limiter
+- `[Coming soon]` Cross Site Scripting (XSS) Validation
+- `[Coming soon]` Cross-Origin Resource Sharing (CORS) support
 - `[Coming soon]` `[Optional]` Allowed HTTP Methods, Basic Auth, CSRF, Rate Limiter
@@ -36,5 +38,5 @@
 /** @type {import('next').NextConfig} */
-const { nextSecurity } = require('next-security');
+const { headers } = require('next-security');
 const nextConfig = {
-  ...nextSecurity(), // with this approach you will also hide the `X-Powered-By` header that is a good pattern
+  ...headers(), // with this approach you will also hide the `X-Powered-By` header that is a good pattern
 };
@@ -49,3 +51,3 @@
 /** @type {import('next').NextConfig} */
-const { generateSecurityHeaders } = require('next-security');
+const { createHeaders } = require('next-security');
 const nextConfig = {
@@ -56,3 +58,3 @@ async headers() {
         source: '/(.*)',
-        headers: generateSecurityHeaders(),
+        headers: createHeaders(),
       },
@@ -94,10 +96,8 @@ ];
 /** @type {import('next').NextConfig} */
-const { nextSecurity } = require('next-security');
+const { headers } = require('next-security');
 const nextConfig = {
-  ...nextSecurity({
-    headers: {
-      xXSSProtection: '1',
-      crossOriginResourcePolicy: 'cross-origin',
-      contentSecurityPolicy: false,
-    },
+  ...headers({
+    xXSSProtection: '1',
+    crossOriginResourcePolicy: 'cross-origin',
+    contentSecurityPolicy: false,
   }),
@@ -104,0 +104,0 @@ };

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

50172

increased by11.48%

Number of package files

23

increased by21.05%

Lines of code

719

increased by11.3%

No dependency changes