1.0.0-rc.5 is the next release candidate
🍾 New features
This PR introduces per-route configuration of security headers, via
defineNuxtConfig({
routeRules: {
[some-route]: {
security: {
headers : ...
}
}
}
})🗞️ Next steps
This is the last release candidate version. In the next weeks we are planning to release stable 1.0.0 version :)
👉 Changelog
compare changes
🚀 Enhancements
- Per-route object based headers configuration
- Limiting CSP header to HTML responses only
- Migrate to Node 18.X
- Allow falling back to global options when per-route option is not provided
🩹 Fixes
- failed to find a valid digest in the 'integrity' attribute
- Strict-Transport-Security as string not parsing max-age correctly
- Nuxt 3.8.1 breaks Subresource Integrity
- Unrecognized Content-Security-Policy directive 'undefined'
- Build fails because of removeLoggers
📖 Documentation
- Per Route Security configuration with headers
❤️ Contributors
- vejja (@vejja)