This version is outdated! Click here to see latest



Node.js CORS middleware

(cors, express, connect, middleware)

Critical or Security advisories for 2.8.2

This version doesn't have any advisory. Want to report one?

Changelog for 2.8.2

  • Fix error when frozen options are passed
  • Send "Vary: Origin" when using regular expressions
  • Send "Vary: Access-Control-Request-Headers" when dynamic allowedHeaders

Dependencies for 2.8.2

Name Requirement Status










My projects using cors

Name Locked version Requirement
You should be logged in to see which of your projects use cors.