Security Patch #1

• Removed x-powered-by from server headers.
• Added rate limiting via NPM package express-rate-limit, which defaults to 1000 requests per client per hour.
• Added the NPM helmet package for additional header security.
• Decreased API footprint by removing unused fs-extra package.

Add REQUEST_LIMIT=<limit_integer> to your .env.

Initial Release (API v1)

• Added an XLSX tool for reading/configuring RUCA code data.
• Created express API server and query routing for requesting the data.

Note: Only CORS protection is in place. No credential requirements or authentication exists in the API. That being said, this API is currently best suited for private hosting for the purpose of data analytics usage only.