search

google / zazu

Apache License 2.0
20 stars 11 forks source link

Implement the best practices for ExpressJS Security #2

Open MichaelMarkieta opened 6 years ago

MichaelMarkieta commented 6 years ago

https://github.com/google/zazu/blob/85d6b2ad577cad2fedc7cc581a60b2ca9635e4c9/server.js#L16

MichaelMarkieta commented 6 years ago

https://expressjs.com/en/advanced/best-practice-security.html

mattwelke commented 5 years ago

I recommend using a service such as Dependabot to help with this, and with staying secure with other dependencies too. They offer the service for free for open source projects.

EDIT: Noticed Jul 4 that Dependabot is active already. Can disregard.