UNPKG

@nodesecure/js-x-ray

Version:

JavaScript AST XRay analysis

github.com/NodeSecure/js-x-ray

NodeSecure/js-x-ray

44 lines 1.37 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
// Import Internal Dependencies import { toValue, toRaw } from "../estree/index.js"; import { stringCharDiversity } from "./stringSuspicionScore.js"; // CONSTANTS const kUnsafeHexValues = new Set([ "require", "length" ].map((value) => Buffer.from(value).toString("hex"))); const kSafeHexValues = new Set([ "0123456789", "123456789", "abcdef", "abc123456789", "0123456789abcdef", "abcdef0123456789abcdef" ]); export const CONSTANTS = Object.freeze({ SAFE_HEXA_VALUES: [...kSafeHexValues], UNSAFE_HEXA_VALUES: [...kUnsafeHexValues] }); /** * @description detect if the given string is an Hexadecimal value */ export function isHex(anyValue) { const value = toValue(anyValue); return typeof value === "string" && /^[0-9A-Fa-f]{4,}$/g.test(value); } /** * @description detect if the given string is a safe Hexadecimal value */ export function isSafe(anyValue) { const rawValue = toRaw(anyValue); if (typeof rawValue === "undefined" || kUnsafeHexValues.has(rawValue)) { return false; } const charCount = stringCharDiversity(rawValue); if (/^([0-9]+|[a-z]+|[A-Z]+)$/g.test(rawValue) || rawValue.length <= 5 || charCount <= 2) { return true; } return [...kSafeHexValues].some((value) => rawValue.toLowerCase().startsWith(value)); } //# sourceMappingURL=hex.js.map