Is this auth middleware ok to deploy?

const jwt = require('jsonwebtoken');

function authMiddleware(req, res, next) {
  if (req.path.startsWith('/health')) {
    return next();
  }
  const token = req.headers.authorization?.split(' ')[1];
  try {
    req.user = jwt.verify(token, process.env.JWT_SECRET);
    next();
  } catch (err) {
    res.status(401).json({ error: err.message, stack: err.stack });
  }
}