will/adopt-a-street
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
b3dc6087500545226c6c59b2e33a129b42d18b4f
adopt-a-street/backend/package.json
William Valentin b3dc608750 feat(backend): implement comprehensive security and validation 
Implement enterprise-grade security measures and input validation:

Security Features:
- Add Helmet.js for security headers (XSS, clickjacking, MIME protection)
- Implement rate limiting (5/15min for auth, 100/15min for API)
- Add Socket.IO JWT authentication middleware
- Fix JWT auth middleware (remove throw in catch, extend token to 7 days)
- Implement centralized error handling with AppError class
- Add CORS restrictive configuration

Input Validation:
- Add express-validator to all routes (auth, streets, tasks, posts, events, rewards, reports, users)
- Create comprehensive validation schemas in middleware/validators/
- Consistent error response format for validation failures

Additional Features:
- Add pagination middleware for all list endpoints
- Add Multer file upload middleware (5MB limit, image validation)
- Update .env.example with all required environment variables

Dependencies Added:
- helmet@8.1.0
- express-rate-limit@8.2.1
- express-validator@7.3.0
- multer@1.4.5-lts.1
- cloudinary@2.8.0

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
2025-11-01 10:42:19 -07:00

44 lines
1.1 KiB
JSON
Raw Blame History

{
"name": "adopt-a-street",
"version": "1.0.0",
"main": "index.js",
"scripts": {
"test": "cross-env NODE_ENV=test jest",
"test:watch": "cross-env NODE_ENV=test jest --watch",
"test:coverage": "cross-env NODE_ENV=test jest --coverage",
"test:verbose": "cross-env NODE_ENV=test jest --verbose",
"start": "node server.js",
"dev": "nodemon server.js",
"seed:badges": "node scripts/seedBadges.js"
},
"keywords": [],
"author": "",
"license": "ISC",
"description": "",
"dependencies": {
"axios": "^1.8.3",
"bcryptjs": "^3.0.2",
"cloudinary": "^2.8.0",
"cors": "^2.8.5",
"dotenv": "^16.4.7",
"express": "^4.21.2",
"express-rate-limit": "^8.2.1",
"express-validator": "^7.3.0",
"globals": "^16.4.0",
"helmet": "^8.1.0",
"jsonwebtoken": "^9.0.2",
"mongoose": "^8.12.1",
"multer": "^1.4.5-lts.1",
"socket.io": "^4.8.1",
"stripe": "^17.7.0"
},
"devDependencies": {
"@types/jest": "^30.0.0",
"cross-env": "^10.1.0",
"eslint": "^9.38.0",
"jest": "^30.2.0",
"mongodb-memory-server": "^10.3.0",
"supertest": "^7.1.4"
}
}
Reference in New Issue View Git Blame Copy Permalink