npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

spartan-shield

v1.2.0

Published

nodejs project to package and configure common security middleware.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

darkmsph1tdarkmsph1t

Keywords

securitynpmsecurity-headersnode-securityappseciot security

Readme

Coverage Status

THIS. IS._SPARTAN!

node application to package & configure common security middleware into your application => returns a policy file and boilerplate code

QUICK START!

  1. Create a new application: npm init to accept the defaults be sure to use the ‘-y’ flag optional: Enable version control w/ git: git init
  2. Install the package: npm install -g spartan-shield installs _spartan as a command line module you can use in any project
    • There’s some wonkiness installing on Linux using the -g flag as access to /usr/bin/ requires elevated permissions. To overcome this, install as sudo npm install -g spartan-shield. If necessary, you should still be able to install and run it locally without the global flag
  3. Run the package: _spartan init creates a policy based upon your answers to a few questions. Use ‘y’ to generate a default policy and boilerplate code

HOW YOU KNOW IT WORKED

Assuming there are no errors, you will see 3 new files/folders in your local directory:

  • security.json => the policy file based upon the questions you answered OR the default policy
  • security.js => the module which points to all of the submodules generated based upon your policy
  • security/ => all of the pre-configured submodules generated from your policy. security.js points to these files.

HOW YOU KNOW IT DIDN’T WORK

_spartan throws ‘ENOENT’ (no entity) errors for each of the following conditions

  • No package.json file => either run npm init or make sure to run _spartan from the same location as package.json
  • No default policy => if you run _spartan -D and get this error, then _spartan can’t find the default policy (packaged with the module); the quickest way to deal with this is to pull the default policy from github by running _spartan -R which restores the factory default policy
    • Default policy restoration requires wget. If you don’t already have this installed, use homebrew or similar to get this package

Other potential installation errors

Required programs missing => _spartan won’t be able to generate integrity (hash) values if either shasum or openssl utilities are missing; if you don’t already have them installed, use homebrew or similar to install them or make sure they are correctly linked to /usr/bin | /usr/local/bin system directories depending upon your operating system

EXAMPLES!

See the example apps in the example folder

MORE INFORMATION!

  • Read the docs: https://docs.spartan-security.io/
  • Ask a question: @darkmsph1t => Twitter
  • Submit an issue: here