Securie for Hono
Hono apps usually run on Cloudflare Workers, Deno Deploy, or Bun. Securie covers edge-specific bugs: env-var binding scope, unbounded request body, missing auth middleware, and CORS misconfiguration.
Why it matters for Hono
Install on your Hono repository. Every route and every middleware is reviewed for auth coverage and edge-runtime safety.
- Native support for Cloudflare Workers, Deno, Bun, Node adapters
- Validates env-binding scope and secret handling
- Detects missing auth middleware on protected routes
- Checks request body size limits (edge runtimes have quirks here)
Common bugs we catch in Hono
Auth middleware applied after public routes
Hono middleware order matters. Public routes declared before the auth middleware escape the check.
CORS with origin: '*'
The default examples show '*'. Production should scope to known origins.
Read the guide →No request body size cap
Edge runtimes charge per millisecond of compute. Unbounded POSTs = DoS amplifier.
Install in under a minute
- Install the Securie GitHub App on your Hono repo
- Securie detects your adapter from package.json
- Push a PR. Findings come back within minutes.
Hono is a community open-source project. Securie is independent.