helmet v6.0.1
help secure Express/Connect apps with various HTTP headers
B
87/100 depmedic health score
snapshot taken 2026-04-28T07:20:39.457Z
Score breakdown
| Popularity | 63/100 |
| Maintenance | 100/100 |
| Quality | 94/100 |
| Risk (penalty for deprecated) | 100/100 |
Snapshot
Weekly downloads
421.8K
Monthly downloads
9.6M
npm dependents
0
GitHub stars
9.3K
Open issues
4
License
MIT
TypeScript types
no
Maintainers (top 5)
adam_baldwin, evanhahn
Embed the badge
Drop one of these into your README. Updates whenever depmedic re-runs the snapshot.
Use depmedic locally on this package
# In your project that depends on helmet:
npm install helmet
npx depmedic # vulnerability triage on your install
npx depmedic --severity=high # CI-friendly: exits 1 on high+criticalWant a deep audit of helmet for vendor review?
The Vendor Dossier PDF goes deeper than this snapshot: full advisory list (resolved + open), maintainer drift, release cadence, transitive risk, license tree. $9 one-time per package.
Order Vendor Dossier ($9) More toolsOrg-wide monitoring
Track every package across your repos. Get an email when any one slips below your minimum grade. $19/mo.
Org Dep Health Monitor ($19/mo)