UNPKG

@mangadex-pub/nuxt-security

Version:

🛡️ Security Module for Nuxt based on HTTP Headers and Middleware

nuxt-security.vercel.app

83 lines (59 loc) 2.54 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
[![nuxt-security](https://nuxt-security.vercel.app/preview.png)](https://nuxt-security.vercel.app) [![npm version][npm-version-src]][npm-version-href] [![npm downloads][npm-downloads-src]][npm-downloads-href] [![Github Actions CI][github-actions-ci-src]][github-actions-ci-href] [![License][license-src]][license-href] [![Nuxt][nuxt-src]][nuxt-href] # Nuxt Security Automatically configure your app to follow OWASP security patterns and principles by using HTTP Headers and Middleware. > This module works with Nuxt 3 only - [📖 &nbsp;Read the documentation](https://nuxt-security.vercel.app) - [👾 &nbsp;Playground](https://nuxt-security.vercel.app/playground) ## Features - Security response headers (including CSP for SSG apps) - Request Size & Rate Limiters - Cross Site Scripting (XSS) Validation - Cross-Origin Resource Sharing (CORS) support - Hide `X-Powered-By` header and remove console loggers utils - `[Optional]` Allowed HTTP Methods, Basic Auth, CSRF ## Usage Install the module: ```sh npm i -D nuxt-security@rc yarn add -D nuxt-security@rc pnpm add -D nuxt-security@rc ``` Add the module in the `modules` array in `nuxt.config.ts`: ```js export default defineNuxtConfig({ modules: ["nuxt-security"], }) ``` And that's it! The module will now register route rules and server middlewares globally so that your application will be more secured. ## Configuration You can pass configuration to the module in the `nuxt.config.ts` like following: ```ts export default defineNuxtConfig({ modules: ["nuxt-security"], security: { // options } }) ``` For all available configuration options check out the [docs](https://nuxt-security.vercel.app). ## Development - Run `yarn dev:prepare` to generate type stubs. - Use `yarn dev` to start playground in development mode. ## License [MIT License](./LICENSE) <!-- Badges --> [npm-version-src]: https://img.shields.io/npm/v/nuxt-security/latest.svg [npm-version-href]: https://npmjs.com/package/nuxt-security [npm-downloads-src]: https://img.shields.io/npm/dt/nuxt-security.svg [npm-downloads-href]: https://npmjs.com/package/nuxt-security [github-actions-ci-src]: https://github.com/baroshem/nuxt-security/actions/workflows/ci.yml/badge.svg [github-actions-ci-href]: https://github.com/baroshem/nuxt-security/actions?query=workflow%3Aci [license-src]: https://img.shields.io/npm/l/nuxt-security.svg [license-href]: https://npmjs.com/package/nuxt-security [nuxt-src]: https://img.shields.io/badge/Nuxt-18181B?logo=nuxt.js [nuxt-href]: https://nuxt.com