I enter app.use(helmet.ieNoOpen()); after noSniff, and it still does not work. "helmet.ieNoOpen() middleware should be mounted correctly " is still crossed.
Challenge: Prevent IE from Opening Untrusted HTML with helmet.ieNoOpen()
Link to the challenge: