0.11.0

What's Changed

• [documentation] Fixed typo for "anti-trojan-source" by @mubaidr in #99
• Fix incorrect auth condition in basic-auth by @Tristan971 in #102
• chore: bump nuxt to 3.2.0 by @Baroshem in #105
• docs: rewrite by @Baroshem in #110
• feat: csrf by @Baroshem in #111
• docs: use security checklists by @Baroshem in #113
• feat: enable CSP for SSG by @tresko in #112
• chore: small corrections before release by @Baroshem in #115

New Contributors

• @mubaidr made their first contribution in #99
• @Tristan971 made their first contribution in #102
• @tresko made their first contribution in #112

Full Changelog: v0.10.2...v0.11.0

0.10.2

What's Changed

• [Fix] Module Options by @runyasak in #88
• docs: add stackblitz to repo by @Baroshem in #91
• Docs/add stackblitz to repo by @Baroshem in #92
• fix: nuxt 3.1.X x-powered-by by @Baroshem in #94

New Contributors

• @runyasak made their first contribution in #88

Full Changelog: v0.10.1...v0.10.2

0.10.1

What's Changed

• fix: add runtime dir to nitro inline array by @pi0 in #84

New Contributors

• @pi0 made their first contribution in #84

Full Changelog: v0.10.0...v0.10.1

0.10.0

What's Changed

• fix: use custom merger for options to avoid array values concatenation by @Qrzy in #80
• docs: add video tutorial by @Baroshem in #76
• feat: optional throw error by @Baroshem in #75
• feat: add enabled config option by @Baroshem in #72

Full Changelog: v0.9.0...v0.10.0

0.9.0

What's Changed

• chore: replace npm with yarn in readme by @DamianGlowala in #63
• refactor: minor improvements in rateLimiter by @DamianGlowala in #62
• chore: lint files by @DamianGlowala in #61
• feat: improve headers config and types by @Qrzy in #65
• fix: xss protection header should be a string by @danielroe in #68

New Contributors

• @DamianGlowala made their first contribution in #63
• @danielroe made their first contribution in #68

Full Changelog: v0.8.0...v0.9.0

0.8.0

What's Changed

• feat: bump to nuxt 3.0.0 by @Baroshem in #56
• Feat/basic auth by @Baroshem in #57

Full Changelog: v0.7.0...v0.8.0

0.7.0

What's Changed

• docs: correct headers default config in docs by @Qrzy in #49
• Chore/0.7.0 by @Baroshem in #53
• Added new good practices docs
• Bump to Nuxt 3.0.0-rc.13
• Fixed some type issus
• Found a reason for failing on Windows - now investigating further but also found a workaround

New Contributors

• @Qrzy made their first contribution in #49

Full Changelog: v0.6.0...v0.7.0

0.6.0

• Fixed issues with the module on Windows
• Fixed issues in npm page
• Added new docs about Security Good Practices
• Fixed completely hiding 'X-Powered-By' header

What's Changed

• Chore/0.6.0 by @Baroshem in #45

Full Changelog: v0.5.0...v0.6.0

0.5.0

What's Changed

• feat: hide powered by by @Baroshem in #36
• docs: add Good Practices section by @Baroshem in #37
• feat: add allowedMethodsRestricter by @Baroshem in #39

Full Changelog: v0.4.0...v0.5.0

0.4.0

With this version we have refactored the security header middlewares into recently released routeRoules that should be faster and easier to override by the user.

Breaking Change (potential)

If you have added a custom headers that were supposed to ovveride the the default ones.

Previously security header middleware routes were '' empty strings and it was causing the middleware to be global.

Right now, with routeRoules, the route should be /** to make it global.

What's Changed

• Docs/docus and templates by @Baroshem in #15
• docs: add Stackblitz demo by @Baroshem in #19
• feat: switched to unstorage by @Intevel in #29
• Chore/0.4.0 by @Baroshem in #33

New Contributors

• @Intevel made their first contribution in #29

Full Changelog: v0.3.0...v0.4.0