Danijel Martinek 082d4d2369 feat(cms): wire security headers middleware ...

Add Next.js middleware.ts to apps/cms that applies all six security
headers on every response using the framework-agnostic
buildSecurityHeaders builder. No nonce is generated or forwarded —
the CMS is server-side only so CSP nonces are not required.

Includes a test suite mirroring the web-next pattern that asserts all
six headers are set, no x-nonce is emitted, and CSP mode switches
correctly between dev (unsafe-inline) and prod (strict-dynamic).

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-20 11:18:30 +00:00

..

src

feat(cms): wire security headers middleware

2026-05-20 11:18:30 +00:00

AGENTS.md

docs(agents): write per-app AGENTS.md for cms, web-next, web-tanstack, storybook

2026-05-05 10:00:28 +02:00

eslint.config.js

refactor: rename eslint-config + typescript-config to core-eslint + core-typescript

2026-05-05 10:37:07 +02:00

instrumentation.ts

fix(otel): consolidate to single OTel SDK init at instrumentation.register hook

2026-05-11 12:38:17 +02:00

middleware.ts

feat(cms): wire security headers middleware

2026-05-20 11:18:30 +00:00

next-env.d.ts

feat(eslint-config): add boundaries plugin enforcing app→feature→core graph

2026-05-05 09:21:01 +02:00

next.config.mjs

feat(cms): Sentry server instrumentation + withSentryConfig + R38 PII test

2026-05-07 20:14:56 +02:00

package.json

feat(cms): Sentry server instrumentation + withSentryConfig + R38 PII test

2026-05-07 20:14:56 +02:00

tsconfig.json

chore(tsconfig): migrate off deprecated baseUrl

2026-05-08 09:44:00 +02:00

tsconfig.tsbuildinfo

feat(core-consent): add PayloadConsent, RecordingConsent and DI binders

2026-05-19 12:39:31 +00:00

turbo.json

build(turbo): add boundaries enforcement matching ESLint dependency graph

2026-05-05 11:59:44 +02:00

vitest.config.ts

feat(apps): add unit tests for providers + bind-production + cms config

2026-05-05 16:34:19 +02:00