From 01335903f40ecab968e5e1846e6d8173f0d41ced Mon Sep 17 00:00:00 2001 From: Mitchell Wise <128532087+mwise-va@users.noreply.github.com> Date: Tue, 12 Dec 2023 11:17:16 -0500 Subject: [PATCH] remove header x-powered-by for WASA remediation (#480) --- src/app.js | 1 + 1 file changed, 1 insertion(+) diff --git a/src/app.js b/src/app.js index 09bb301d..817460a1 100644 --- a/src/app.js +++ b/src/app.js @@ -76,6 +76,7 @@ function runServer(argv) { .then(handleMetadata(argv)) .then(() => { const app = express(); + app.disable("x-powered-by"); const httpServer = http.createServer(app); const spConfigs = { id_me: new SPConfig(argv) }; strategies.set("id_me", createPassportStrategy(spConfigs.id_me));