Releases · Munter/express-legacy-csp · GitHub

19 Oct 19:30

papandreou

Update useragent to avoid redos vulnerability Latest

Latest

Bump useragent dependency to ^2.2.1 to address https://nodesecurity.io/advisories/312

Assets 2

19 Apr 13:54

papandreou

Update caniuse-db to 1.0.30000655 and switch to a ^ version range

v1.5.0

1.5.0

Assets 2

16 Mar 13:28

papandreou

Don't crash when browser version numbers have leading zeroes

v1.4.1

1.4.1

Assets 2

28 Feb 08:40

Munter

Assume that not explicitly mentioned lower versions are unsupported

Features

When a browser is encountered that does not exist in the caniuse dataset, but is a lower version than all other browsers in the dataset, assume that the browser has no CSP capabilities.

Assume that not explicitly mentioned lower versions are unsupported 44a3049 @papandreou

Assets 2

27 Feb 07:55

papandreou

Extrapolate from latest browser version mentioned in caniuse-db

When caniuse-db does not have data about a given browser version, assume it has the same capabilities as the highest version that does have data (#7)

Assets 2

23 Feb 22:26

Munter

Feature completion

Features

Support multiple comma-separated policies in a single header f8f0905 @papandreou
Add support for parsing version range specifiers in caniuse-db 3718138 @papandreou

Assets 2

23 Feb 22:22

Munter

Safari CSP1 downgrade fixes

Fixes

Temporarily fix downgrading in iOS Safari c0f4a3f @papandreou

Assets 2

23 Feb 22:20

Munter

Report-only

Features

Added support for rewriting Content-Security-Policy-Report-Only 75fe006 @papandreou

Fixes

Fix issue with downgrade functions stripping out any directive not ending with '-src' 0bc3473 @Munter

Assets 2