UNPKG

nuxt-security

Version:

🛡️ Security Module for Nuxt based on HTTP Headers and Middleware

nuxt-security.vercel.app

73 lines (51 loc) 2.4 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
[![nuxt-security](https://nuxt-security.vercel.app/preview.png)](https://nuxt-security.vercel.app) [![npm version][npm-version-src]][npm-version-href] [![npm downloads][npm-downloads-src]][npm-downloads-href] [![Github Actions CI][github-actions-ci-src]][github-actions-ci-href] [![License][license-src]][license-href] [![Nuxt][nuxt-src]][nuxt-href] # Nuxt Security Automatically configure your app to follow OWASP security patterns and principles by using HTTP Headers and Middleware. > This module works with Nuxt 3.X and newer (4.X) - [📖 &nbsp;Read the documentation](https://nuxt-security.vercel.app) - [👾 &nbsp;Playground](https://nuxt-security.vercel.app/playground) ## Features - Security response headers (including CSP for SSG apps) - Request Size & Rate Limiters - Cross Site Scripting (XSS) Validation - Cross-Origin Resource Sharing (CORS) support - Hide `X-Powered-By` header and remove console loggers utils - `[Optional]` Allowed HTTP Methods, Basic Auth, CSRF ## Usage Install the module: ```sh npx nuxi@latest module add security ``` And that's it! The module will now register route rules and server middlewares globally so that your application will be more secured. ## Configuration You can pass configuration to the module in the `nuxt.config.ts` like following: ```ts export default defineNuxtConfig({ modules: ["nuxt-security"], security: { // options } }) ``` For all available configuration options check out the [docs](https://nuxt-security.vercel.app/getting-started/configuration). ## Development - Run `yarn dev:prepare` to generate type stubs. - Use `yarn dev` to start playground in development mode. ## License [MIT License](./LICENSE.md) <!-- Badges --> [npm-version-src]: https://img.shields.io/npm/v/nuxt-security/latest.svg [npm-version-href]: https://npmjs.com/package/nuxt-security [npm-downloads-src]: https://img.shields.io/npm/dt/nuxt-security.svg [npm-downloads-href]: https://npmjs.com/package/nuxt-security [github-actions-ci-src]: https://github.com/baroshem/nuxt-security/actions/workflows/ci.yml/badge.svg [github-actions-ci-href]: https://github.com/baroshem/nuxt-security/actions?query=workflow%3Aci [license-src]: https://img.shields.io/npm/l/nuxt-security.svg [license-href]: https://npmjs.com/package/nuxt-security [nuxt-src]: https://img.shields.io/badge/Nuxt-18181B?logo=nuxt.js [nuxt-href]: https://nuxt.com