This fork supports next 14, converts to typescript, gets test coverage up to 100%.
It'll also error if you use none
or *
on a permissions-policy along with other values.
next-safe
helps secure your Next.js apps by providing sensible defaults for the most common security headers, including:
Content-Security-Policy
-
Permissions-Policy
(formerly known asFeature-Policy
) Referrer-Policy
X-Content-Type-Options
X-Frame-Options
Check out the full documentation at https://trezy.gitbook.io/next-safe.
Thanks goes to these wonderful people (emoji key):
Trezy 🐛 💻 💡 🤔 🚇 🚧 👀 |
Cameron Welter 🐛 💻 🤔 🚧 |
Omar López 📖 |
Anton Frattaroli 🐛 |
april-ctrlspire 🤔 |
João Lucas Evangelista C. de Amorim 🐛 💻 |
anvelicon 💻 📖 🤔 |
This project follows the all-contributors specification. Contributions of any kind welcome! Check out our contributing docs for help getting started!