UNPKG

@aikidosec/firewall

Version:

Zen by Aikido is an embedded Web Application Firewall that autonomously protects Node.js apps against common and critical attacks

aikido.dev/zen

AikidoSec/firewall-node

68 lines (67 loc) 2.62 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.Express = void 0; const http_1 = require("http"); const wrapRequestHandler_1 = require("./express/wrapRequestHandler"); const wrapExport_1 = require("../agent/hooks/wrapExport"); class Express { wrapArgs(args) { return args.map((arg) => { // Ignore non-function arguments if (typeof arg !== "function") { return arg; } // Ignore error handlers if (arg.length > 3) { return arg; } return (0, wrapRequestHandler_1.wrapRequestHandler)(arg); }); } wrapParamArgs(args) { // Don't check the length of the arguments here // app.param(name, (req, res, next, value) => {...}) return args.map((arg) => { // Ignore non-function arguments if (typeof arg !== "function") { return arg; } return (0, wrapRequestHandler_1.wrapRequestHandler)(arg); }); } wrap(hooks) { const expressMethodNames = http_1.METHODS.map((method) => method.toLowerCase()); hooks .addPackage("express") .withVersion("^4.0.0 || ^5.0.0") .onRequire((exports, pkgInfo) => { // Wrap all the functions passed to app.METHOD(...) // Examples: // app.METHOD(path, handler) // app.METHOD(path, middleware, handler) // app.METHOD(path, middleware, middleware, ..., handler) for (const method of expressMethodNames) { (0, wrapExport_1.wrapExport)(exports.Route.prototype, method, pkgInfo, { kind: undefined, modifyArgs: (args) => this.wrapArgs(args), }); } // Wrap all the functions passed to app.use(...) // app.use(middleware) // app.use(middleware, middleware, ...) // app.use(path, middleware) // app.use(path, middleware, middleware, ...) (0, wrapExport_1.wrapExport)(exports.application, "use", pkgInfo, { kind: undefined, modifyArgs: (args) => this.wrapArgs(args), }); // Wrap the functions passed to app.param(...) // app.param(name, handler) (0, wrapExport_1.wrapExport)(exports.application, "param", pkgInfo, { kind: undefined, modifyArgs: (args) => this.wrapParamArgs(args), }); }); } } exports.Express = Express;