From 08eab4be65b72960a95a63aa111beb84c70bf3aa Mon Sep 17 00:00:00 2001
From: navaneeth <navaneethpk@outlook.com>
Date: Sun, 1 Aug 2021 15:01:29 +0530
Subject: [PATCH] Set up helmet

---
 server/package-lock.json | 14 ++++++++++++++
 server/package.json      |  1 +
 server/src/main.ts       |  2 ++
 3 files changed, 17 insertions(+)

diff --git a/server/package-lock.json b/server/package-lock.json
index a2462cad91..4d2172be85 100644
--- a/server/package-lock.json
+++ b/server/package-lock.json
@@ -27,6 +27,7 @@
         "dotenv": "^10.0.0",
         "futoin-hkdf": "^1.4.2",
         "got": "^11.8.2",
+        "helmet": "^4.6.0",
         "humps": "^2.0.1",
         "ioredis": "^4.27.6",
         "joi": "^17.4.1",
@@ -6723,6 +6724,14 @@
         "he": "bin/he"
       }
     },
+    "node_modules/helmet": {
+      "version": "4.6.0",
+      "resolved": "https://registry.npmjs.org/helmet/-/helmet-4.6.0.tgz",
+      "integrity": "sha512-HVqALKZlR95ROkrnesdhbbZJFi/rIVSoNq6f3jA/9u6MIbTsPh3xZwihjeI5+DO/2sOV6HMHooXcEOuwskHpTg==",
+      "engines": {
+        "node": ">=10.0.0"
+      }
+    },
     "node_modules/highlight.js": {
       "version": "10.7.3",
       "resolved": "https://registry.npmjs.org/highlight.js/-/highlight.js-10.7.3.tgz",
@@ -18853,6 +18862,11 @@
       "resolved": "https://registry.npmjs.org/he/-/he-1.2.0.tgz",
       "integrity": "sha512-F/1DnUGPopORZi0ni+CvrCgHQ5FyEAHRLSApuYWMmrbSwoN2Mn/7k+Gl38gJnR7yyDZk6WLXwiGod1JOWNDKGw=="
     },
+    "helmet": {
+      "version": "4.6.0",
+      "resolved": "https://registry.npmjs.org/helmet/-/helmet-4.6.0.tgz",
+      "integrity": "sha512-HVqALKZlR95ROkrnesdhbbZJFi/rIVSoNq6f3jA/9u6MIbTsPh3xZwihjeI5+DO/2sOV6HMHooXcEOuwskHpTg=="
+    },
     "highlight.js": {
       "version": "10.7.3",
       "resolved": "https://registry.npmjs.org/highlight.js/-/highlight.js-10.7.3.tgz",
diff --git a/server/package.json b/server/package.json
index e8888d3869..9bf023c660 100644
--- a/server/package.json
+++ b/server/package.json
@@ -45,6 +45,7 @@
     "dotenv": "^10.0.0",
     "futoin-hkdf": "^1.4.2",
     "got": "^11.8.2",
+    "helmet": "^4.6.0",
     "humps": "^2.0.1",
     "ioredis": "^4.27.6",
     "joi": "^17.4.1",
diff --git a/server/src/main.ts b/server/src/main.ts
index 29e1c92426..d1a8c88e33 100644
--- a/server/src/main.ts
+++ b/server/src/main.ts
@@ -1,5 +1,6 @@
 import { NestFactory } from '@nestjs/core';
 import { AppModule } from './app.module';
+import * as helmet from 'helmet';
 const fs = require('fs');
 
 declare var TOOLJET_VERSION;
@@ -12,6 +13,7 @@ async function bootstrap() {
 
   await app.setGlobalPrefix('api');
   await app.enableCors();
+  app.use(helmet());
   
   const port = parseInt(process.env.PORT) || 3000;