Express
Overview
Express.js security rules for CORS, headers, cookies, and CSRF
eslint-plugin-express-security
9 specialized rules — LLM-optimized error messages with CWE, OWASP, and CVSS metadata.
Installation
npm install --save-dev eslint-plugin-express-securityConfiguration
import expresssecurity from 'eslint-plugin-express-security';
export default [expresssecurity.configs.recommended];Available Presets
| Preset | Description |
|---|---|
recommended | Balanced security for most projects |
strict | Maximum enforcement (all rules as errors) |
Rules
Browse all rules with CWE and OWASP references:
Loading rules...
Related Articles
Initializing articles...