{"library":"hsts","type":"library","category":null,"description":"The `hsts` package provides HTTP Strict Transport Security (HSTS) middleware for Node.js applications, primarily for use with Express or Connect. It adds the `Strict-Transport-Security` header to HTTP responses, instructing browsers to interact with the site exclusively over HTTPS for a specified duration. Key features include configurable `maxAge` (in seconds), `includeSubDomains`, and `preload` directives for HSTS preloading services. This package is part of the Helmet.js suite, a collection of security middleware. The current stable version is 2.2.0, which has been stable for some time, indicating a mature, maintenance-oriented release cadence rather than frequent updates unless security vulnerabilities or major breaking changes in web standards require it. Its primary differentiator is its simplicity and integration within the widely adopted Helmet.js ecosystem, ensuring robust and standard-compliant HSTS implementation.","language":"javascript","status":"active","version":"2.2.0","tags":["javascript","helmet","security","express","connect","hsts","https"],"last_verified":"Wed May 27","install":[{"cmd":"npm install hsts","imports":["import hsts from 'hsts'","import hsts from 'hsts'; const hstsMiddleware = hsts({...});"]},{"cmd":"yarn add hsts","imports":[]},{"cmd":"pnpm add hsts","imports":[]}],"homepage":"https://helmetjs.github.io","github":"https://github.com/helmetjs/hsts","docs":null,"changelog":null,"pypi":null,"npm":"https://www.npmjs.com/package/hsts","openapi_spec":null,"status_page":null,"smithery":null,"compatibility":{"summary":{"python_range":"18–22","success_rate":0,"avg_install_s":null,"avg_import_s":null,"wheel_type":null},"url":"https://checklist.day/v1/registry/hsts/compatibility"}}