Merge pull request #34 from contentstack/fix/dx-2390-snyk-vulnerability

Fix/dx 2390 snyk vulnerability

Author: harshithad0703

app.js

@@ -1,8 +1,21 @@
 const createError = require('http-errors')
 const express = require('express')
 const logger = require('morgan')
+const rateLimit = require('express-rate-limit')
 const app = express()
 const nunjucks = require('nunjucks')
+const helmet = require('helmet');
+
+app.use(helmet());
+
+const limiter = rateLimit({
+  windowMs: 15 * 60 * 1000,
+  max: 100,
+  message: 'Too many requests from this IP, please try again after 15 minutes',
+  standardHeaders: true,
+  legacyHeaders: false,
+})
+app.use(limiter)
 
 //setting view and nunjuks configuration
 app.set('view engine', 'html')

middlewares/index.js

@@ -1,6 +1,9 @@
 const express = require('express')
+const helmet = require('helmet');
 const app = express();
 
+app.use(helmet());
+
 app.use('*', require('./locales'))
 app.use('*', require('./partials'))