gaspersic/freeCodeCamp
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

add hpp to address express vulnerability

Browse Source
This commit is contained in:
Quincy Larson
2015-06-04 19:30:27 -07:00
parent 208f4ea18f
commit 875d09c29b
2 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
package.json
View File

@ -53,6 +53,7 @@
"gulp-minify-css": "~0.5.1", "gulp-minify-css": "~0.5.1",
"helmet": "~0.9.0", "helmet": "~0.9.0",
"helmet-csp": "^0.2.3", "helmet-csp": "^0.2.3",
"hpp": "^0.2.0",
"jade": "~1.8.0", "jade": "~1.8.0",
"less": "~1.7.5", "less": "~1.7.5",
"less-middleware": "~2.0.1", "less-middleware": "~2.0.1",

2
server/server.js
View File

@ -27,6 +27,7 @@ var R = require('ramda'),
expressValidator = require('express-validator'), expressValidator = require('express-validator'),
forceDomain = require('forcedomain'), forceDomain = require('forcedomain'),
lessMiddleware = require('less-middleware'), lessMiddleware = require('less-middleware'),
hpp = require('hpp'),
passportProviders = require('./passport-providers'), passportProviders = require('./passport-providers'),
/** /**
@ -59,6 +60,7 @@ app.use(lessMiddleware(path.join(__dirname, '/public')));
app.use(logger('dev')); app.use(logger('dev'));
app.use(bodyParser.json()); app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: true })); app.use(bodyParser.urlencoded({ extended: true }));
app.use(hpp());
app.use(expressValidator({ app.use(expressValidator({
customValidators: { customValidators: {
matchRegex: function (param, regex) { matchRegex: function (param, regex) {