{"library":"koa-lusca","type":"library","category":null,"description":"Web application security middleware for koa, forked from krakenjs/lusca. Version 2.2.0 provides CSRF protection, Content Security Policy (CSP), X-Frame-Options (clickjacking), P3P privacy headers, HSTS, and XSS protection. This package is actively maintained but does not support Koa v2 (async/await) or modern ESM. Release cadence is low; last update was 2019. Key differentiator: it brings lusca-style security to Koa v1, but developers should consider alternatives like 'koa-helmet' for Koa v2.","language":"javascript","status":"maintenance","version":"2.2.0","tags":["javascript"],"last_verified":"Wed May 27","install":[{"cmd":"npm install koa-lusca","imports":["const lusca = require('koa-lusca');","app.use(lusca.csrf());","const lusca = require('koa-lusca'); app.use(lusca.csp({ policy: { 'default-src': \"'self'\" } }));"]},{"cmd":"yarn add koa-lusca","imports":[]},{"cmd":"pnpm add koa-lusca","imports":[]}],"homepage":null,"github":"https://github.com/koajs/koa-lusca","docs":null,"changelog":null,"pypi":null,"npm":"https://www.npmjs.com/package/koa-lusca","openapi_spec":null,"status_page":null,"smithery":null,"compatibility":{"summary":{"python_range":"18–22","success_rate":0,"avg_install_s":null,"avg_import_s":null,"wheel_type":null},"url":"https://checklist.day/v1/registry/koa-lusca/compatibility"}}