Ryan Kelly
|
ecb4fec2b9
|
chore(tests): Use nyc for code coverage.
|
2018-03-28 17:47:30 +11:00 |
vladikoff
|
cbe383ab8a
|
refactor(lint): remove jscs, update eslint rules
|
2017-08-25 07:12:17 -04:00 |
John Morrison
|
14e798c8ce
|
refactor(headers): re-use same header checks for all tests
|
2017-01-13 12:54:03 -08:00 |
|
John Morrison
|
edc7d5e967
|
fix(headers): add cache-control headers to api endpoints
|
2017-01-13 11:55:21 -08:00 |
Greg Guthe
|
b033f93793
|
fix(security): set x-frame-options deny
To prevent clickjacking and UI redress attacks, don't allow this page to
be iframed.
|
2017-01-09 16:27:51 -05:00 |
|
Greg Guthe
|
219fe99a43
|
fix(security): enable X-XSS-Protection with 1; mode=block
Enable browser filters for reflected XSS.
|
2017-01-09 16:27:21 -05:00 |
|
Greg Guthe
|
fb5a05d7cb
|
fix(security): enable x-content-type-options nosniff
Turn off mime type sniffing to avoid XSS from the browser rendering
other resources as a HTML.
|
2017-01-09 16:26:05 -05:00 |
|
Vlad Filippov
|
d975d21aae
|
fix(deps): update to latest hapi, joi and boom. requires node 4+
|
2016-09-26 10:24:45 -04:00 |
Jon Buckley
|
d4f3863d2e
|
feat(docker): Add /__lbheartbeat__ endpoint for Dockerflow compatibility
|
2016-05-17 12:42:14 -04:00 |
|
John Morrison
|
bef76003a8
|
chore(version): add /__version__ route with source repo
|
2015-09-03 21:51:34 -07:00 |
Peter deHaan
|
e88d81013a
|
chore(build): Replace JSHint with ESLint
|
2015-06-17 00:27:17 -07:00 |
|
John Morrison
|
248e2e48f8
|
feat(server): enable HSTS maxAge six months
|
2014-10-20 12:44:36 -07:00 |
Sean McArthur
|
e0078b52a1
|
review fixes, delete route, and more
|
2014-08-22 16:33:58 -07:00 |