https://github.com/tobias-kaerst-software/elysia-helmet
Help secure Elysia apps with various HTTP headers 🔒
https://github.com/tobias-kaerst-software/elysia-helmet
bun elysia elysia-plugin helmet
Last synced: 5 months ago
JSON representation
Help secure Elysia apps with various HTTP headers 🔒
- Host: GitHub
- URL: https://github.com/tobias-kaerst-software/elysia-helmet
- Owner: tobias-kaerst-software
- License: mit
- Created: 2023-09-05T15:55:42.000Z (about 2 years ago)
- Default Branch: main
- Last Pushed: 2025-05-21T09:39:02.000Z (6 months ago)
- Last Synced: 2025-06-20T19:57:44.164Z (5 months ago)
- Topics: bun, elysia, elysia-plugin, helmet
- Language: TypeScript
- Homepage: https://www.npmjs.com/package/elysia-helmet
- Size: 35.2 KB
- Stars: 40
- Watchers: 2
- Forks: 5
- Open Issues: 2
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
- awesome-elysia - Helmet - Secure apps with various HTTP headers. (Plugins)
README
# Elysia Helmet
Helmet helps secure Elysia apps by setting HTTP response headers. This is a port of the official [helmet](https://github.com/helmetjs/helmet) plugin for express.
## 🧑💻 Install
```
bun add elysia-helmet
```
## 👋 Getting Started
Here's a sample Elysia app that uses Helmet:
```typescript
import { Elysia } from 'elysia';
import { helmet } from 'elysia-helmet';
new Elysia().use(helmet()).listen(3000);
```
For more configuration options, please refer to the original [helmet documentation](https://github.com/helmetjs/helmet).
> There seems to be a bug in the current version of Elysia that prevents the headers from being set correctly. As a workaround, you can use the aot flag must be set to false.
>
> ```typescript
> new Elysia({ aot: false }).use(helmet()).listen(3000);
> ```
>
> Refer to this [Issue](https://github.com/elysiajs/elysia/issues/625).
## 🔓 License
This software ist distributed under the MIT license. For more information you can have a look at the [license file](./LICENSE).