- api-error-handler - error handler for JSON APIs
- connect-rid - connect request id based on rid
- errorhandler - development-only error handler middleware
- generator - application generator
- morgan - HTTP request logger middleware
- multer - middleware for handling multipart/form-data
- paginate - pagination middleware and view helpers
- restful-router - simple RESTful url router
- timeout - time out requests
- Auth0 JWT - JWT authentication middleware
- cookie-session - cookie-based session middleware
- Passport - authentication middleware based on strategy pattern
- express-session - auth middleware
- connect-mongo - MongoDB session store for Express and Connect
- express-validator - middleware for validator
- Express Async errors - simple async/await support hack
- Express Yields - ES6 generators and ES7 async/await support hack
- PM2 - daemon process manager
- response-time - record response time for HTTP requests
- Swagger UI Express - serve auto-generated swagger-ui generated API docs
- cors - CORS middleware
- csurf - CSRF protection middleware
- express-csp-header - Content-Security-Policy header generator
- express-rate-limit - limit repeated requests
- express-slow-down - slows down responses rather than blocking them outright
- Helmet - helps you secure your Express apps by setting various HTTP headers