{"id":18677614,"url":"https://github.com/laynef/node-secure-cors","last_synced_at":"2025-11-07T08:30:42.501Z","repository":{"id":98815259,"uuid":"126764423","full_name":"laynef/node-secure-cors","owner":"laynef","description":"CORS for Node.js that does not allow wildcards for Subdomain attacks","archived":false,"fork":false,"pushed_at":"2018-03-26T03:57:22.000Z","size":31,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"master","last_synced_at":"2024-12-27T21:13:00.657Z","etag":null,"topics":["cors","security","subdomains"],"latest_commit_sha":null,"homepage":"","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/laynef.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-03-26T02:46:37.000Z","updated_at":"2024-07-02T08:11:21.000Z","dependencies_parsed_at":"2023-05-02T07:24:04.632Z","dependency_job_id":null,"html_url":"https://github.com/laynef/node-secure-cors","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/laynef%2Fnode-secure-cors","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/laynef%2Fnode-secure-cors/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/laynef%2Fnode-secure-cors/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/laynef%2Fnode-secure-cors/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/laynef","download_url":"https://codeload.github.com/laynef/node-secure-cors/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":239525232,"owners_count":19653291,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cors","security","subdomains"],"created_at":"2024-11-07T09:34:30.950Z","updated_at":"2025-02-18T18:25:13.570Z","avatar_url":"https://github.com/laynef.png","language":"JavaScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Secure CORS\n\n## Installation\n`npm i -S secure-cors`\n\n## Why Secure CORS\n    /*\n    Use secure CORS because it gives errors when you use wild cards for origins.\n    Allowing any wild cards in your CORS allows you to use your server with any domain under that wildcard.\n    Be sure to specify the exact urls you need.\n    */\n\n    const express = require('express');\n    const cors = require('secure-cors');\n\n    const app = express();\n\n    app.use(cors({\n        origin: 'https://www.example.com' // never '*' or '*.example.com'\n    }));\n\n    app.listen(3000);","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flaynef%2Fnode-secure-cors","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Flaynef%2Fnode-secure-cors","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flaynef%2Fnode-secure-cors/lists"}