meanjs · lirantal · Jul 2, 2017 · Jun 28, 2017 · Jun 29, 2017 · Jul 1, 2017
diff --git a/.travis.yml b/.travis.yml
@@ -30,7 +30,7 @@ addons:
     - clang
 before_install:
   - npm install nsp -g
-  - npm install snyk -g
+#  - npm install snyk -g
   - npm install protractor
   - 'export DISPLAY=:99.0'
   - 'sh -e /etc/init.d/xvfb start'
@@ -42,7 +42,7 @@ before_install:
 #  - snyk test
 after_script:
   - nsp check
-  - snyk test
+#  - snyk test
   - gulp test:coverage
   - node_modules/.bin/lcov-result-merger 'coverage/**/lcov.info' | node_modules/coveralls/bin/coveralls.js
 notifications:

diff --git a/config/lib/express.js b/config/lib/express.js
@@ -137,11 +137,12 @@ module.exports.initModulesConfiguration = function (app, db) {
 };
 
 /**
- * Configure Helmet headers configuration
+ * Configure Helmet headers configuration for security
  */
 module.exports.initHelmetHeaders = function (app) {
-  // Use helmet to secure Express headers
-  var SIX_MONTHS = 15778476000;
+  // six months expiration period specified in seconds
+  var SIX_MONTHS = 15778476;
+
   app.use(helmet.frameguard());
   app.use(helmet.xssFilter());
   app.use(helmet.noSniff());

diff --git a/package.json b/package.json
@@ -49,7 +49,7 @@
     "express-session": "~1.15.2",
     "generate-password": "~1.3.0",
     "glob": "~7.1.1",
-    "helmet": "~2.3.0",
+    "helmet": "~3.6.1",
     "jasmine-core": "~2.5.2",
     "lodash": "~4.17.4",
     "lusca": "~1.4.1",